Update keys.gnupg.net? Re: [Announce] GnuPG 2.2.29 (LTS) released

Simon Josefsson simon at josefsson.org
Fri Jul 23 19:45:59 CEST 2021

Werner Koch via Gnupg-devel <gnupg-devel at gnupg.org> writes:

> On Wed, 14 Jul 2021 09:47, Ingo Klöcker said:
>> Well, `dig keys.gnupg.net`, `nslookup keys.gnupg.net`, and `ping 
>> keys.gnupg.net` all agree that there is no DNS entry for keys.gnupg.net. 
> I removed the CNAMES along with the last 2.2. release and added a TXT
> record:
> host -t txt keys.gnupg.net
> keys.gnupg.net descriptive text "GnuPG uses an internal mapping for this name, see dirmngr/server.c."
> This internal mapping was a consequence of CNAME and pool problems since 2.1.

Should keys.gnupg.net continue to be used or not?  What is the best
generic recommendation these days?  The announce-gen script in gnulib
[1] still uses '--keyserver keys.gnupg.net', and its output ends up in
many release announcements of GNU projects.  Is there anything better
than that?  Of course, how to locate PGP keys for a single individual
will differ, but it would be nice if there were a best recommended
approach, which is what keys.gnupg.net has been (is?) as far as I can


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 255 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20210723/3822ff0c/attachment.sig>

More information about the Gnupg-devel mailing list