No warning on 'gpg -a -o somewhere.gpg -s -r someone <file>'

Len Sassaman rabbi at
Fri Nov 9 09:01:02 CET 2001

On 9 Nov 2001, Pascal Scheffers wrote:

> > upset if other people were able to export these addtional key ids.
> Exporting should not really matter, because they would be signed by
> something that is not an ultimately trusted key. Add that restriction
> and you're fine.

Except that in most implementations  of OpenPGP, *cough NAI's PGP cough*,
such user-ids would be indistinguishable at a glance from owner-created


Len Sassaman

Security Architect            |  "Now it's all change --
Technology Consultant         |   It's got to change more."
                              |       |              --Joe Jackson

More information about the Gnupg-devel mailing list