Allowing "duplicate" signatures

Michael Young mwy-gpg41@the-youngs.org
Mon Aug 6 01:07:01 2001


-----BEGIN PGP SIGNED MESSAGE-----

As it stands, GnuPG refuses to sign a key/name pair with a particular
key if a signature by that signing-key already exists.  There are
several reasons that you might want to do that, though.  As noted
in the code, the existing signature could be revoked.  Similarly,
it could be expired.  You might also want to generate a new
signature with new properties (subpacket values):
    new expiration time;
    new signature type (not yet selectable, but I'd like it to be);
    different notation data;
    different "trust signature" value, or associated regular expression; or,
    different exportability.

I recognize that these are somewhat unusual circumstances, and
there is value in pointing out that a signature already exists.

I propose adding a command-line switch to override the duplicate
checking.  I'd be happy to contribute a patch for it... any
suggestions on the name for the switch, or on another approach?


-----BEGIN PGP SIGNATURE-----
Version: PGP Personal Privacy 6.5.3

iQEVAwUBO23QhmNDnIII+QUHAQHZ5QgAoxrX/cx8DxXJQTxtu2Ad2jg//zW/WiH9
Ru5L2IaTR5iKHSc8BNcZMQMkg0Bwph0CE0YOlZhkyGAiZfRaw/WXjnbk9wX0pTMi
vYX3fblZMTctk/uAOcb2Cnpla00iQt6Z20K2eOQRGzKMfsinmNTVEl1c1mi0nEdg
kE6D2xf0TKaVmzaHeJ+XNkmDpKbyOLfXU3/GoQEiPllAoDuuqo3vnzzWnlPRcEPU
x8k99BZ5bU8amH6mA3mz1D+giaPFIufyOmY4LmuoPBBYqMD6Fxu3ndPGC1rHh4Cc
Qjbt7wkITRgumM1d+kFJYsInHE6EdZLoANB5WPuOMWMNgkBVJRxuzA==
=gqb9
-----END PGP SIGNATURE-----