Newbie Question

David Shaw dshaw at jabberwocky.com
Tue Jul 29 03:33:25 CEST 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, Jul 28, 2003 at 01:47:44PM +0000, William Korb wrote:
> Divya,
> 
> I defer to David Shaw as the definitive expert on this, but I did just 
> this for a customer earlier this year. The problem is that full support 
> of a non-PGP Corporation LDAP server has not yet been integrated into a 
> production release of GnuPG. I was able to modify the schema of our 
> iPlanet/SunONE LDAP server and get the commercial PGP client to work with 
> it fine, but not so to this point with GnuPG.

There should be support for this in GnuPG eventually.  The problem is
that the keyserver API was designed for "smart" keyservers (that is,
keyservers that understand PGP key formats and do the right thing when
receiving a key with little additional information).  Using a regular
LDAP server as a key store is a "dumb" keyserver, and the API needs a
few new pieces of information for the LDAP plugin to be able to handle
that properly.

David
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3rc1 (GNU/Linux)
Comment: Key available at http://www.jabberwocky.com/david/keys.asc

iEYEARECAAYFAj8lhKUACgkQ4mZch0nhy8klRQCcDXkWYCPj+e2j7+ttTsvaU0S9
lg0AnigcTvsoHg3r4yeEpNSoFMN0Yl94
=GSWS
-----END PGP SIGNATURE-----




More information about the Gnupg-devel mailing list