cert-policy-url
Atom 'Smasher'
atom at suspicious.org
Fri May 14 06:30:34 CEST 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
two weird things about "cert-policy-url" (1.2.4)....
1) if a cert-policy-url is specified (in the config file), policy URLs are
added even to keybinding signatures. this does not appear to be a
violation of rfc2440, but it does seem weird.
2) if a subkey has it's expiration date updated (to generate a new
keybinding signature) with no policy-url specified or a different
policy-url, the old policy-url remains intact. there appears to be no
simple way to either change or get rid of a bad policy-url from a
keybinding signature.
...atom
_________________________________________
PGP key - http://atom.smasher.org/pgp.txt
762A 3B98 A3C3 96C9 C6B7 582A B88D 52E4 D9F5 7808
-------------------------------------------------
"They have computers, and they may have
other weapons of mass destruction."
-- Janet Reno, US Attorney General,
27 Feb 1998
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)
Comment: What is this gibberish? - http://atom.smasher.org/links/#digital_signatures
iEYEARECAAYFAkCkS3EACgkQnCgLvz19QeNuswCgj0LzONUMA8wnUhpamjxwOZgb
w+QAmgOz7B4CnZsUgZibTFiaEAdOnZ2K
=CojW
-----END PGP SIGNATURE-----
More information about the Gnupg-devel
mailing list