L. Sassaman rabbi at quickie.net
Fri Feb 4 20:31:06 CET 2000

Hash: SHA1

On Wed, 2 Feb 2000, Werner Koch wrote:

> On Wed, 2 Feb 2000, L. Sassaman wrote:
> > Would it be possible tonarrow this option down to be
> > "allow-non-selfsigned-uid-if-main-uid"? I find most rsa keys I deal with
> So waht is the main uid?  The newest one or the one with the most
> signatures on it?  

Ok. So let me modify my proposal here. What about an option for
"allow-non-selfsigned-uid-if-only-uid". There is obviously no risk of this
uid having been attached to the key without the key generator's
> The best solution to this problem is by asking the owner to sign his
> own key.

Yes, that is true. But you must certainly be aware that people don't
always comply.
> The allow-non* option has been intruduced because quite a couple of
> folks here in Germany use a hacked version of PGP 2 which splits
> signature and encryption key into 2 real keys with some magic strings
> in the user ID.

Interesting. What version is that?
> -- 
> Werner Koch at guug.de           www.gnupg.org           keyid 621CC013


L. Sassaman

System Administrator                |  "All of the chaos
Technology Consultant               |   Makes perfect sense..."
icq.. 10735603                      |
pgp.. finger://ns.quickie.net/rabbi |              --Joe Diffie

Version: GnuPG v1.0.1 (GNU/Linux)
Comment: OpenPGP Encrypted Email Preferred.


More information about the Gnupg-devel mailing list