Checking key server response against the request parameters

Werner Koch wk at gnupg.org
Fri Oct 4 13:39:37 CEST 2013


On Sun, 15 Sep 2013 23:22, tomanek at internet-sicherheit.de said:

> I just noticed that gnupg will even import secret keys from any keyserver
> response if the key data is prefixed with "BEGIN PGP PUBLIC KEY DATA".

That is correct.  It will do so even for keys retrieved via DNS.  I have
a pretty simple patch against this in the queue.


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.




More information about the Gnupg-devel mailing list