suggestions surrounding key generating
Stefan H. Holek
stefan@epy.co.at
Thu, 9 Nov 2000 11:35:05 +0100 (CET)
On Wed, 8 Nov 2000, Werner Koch wrote:
> Verification of signature does also work with expired/revoked keys.
> However there will be a message telling this. BTW, don't rely on
It is my experience that this does NOT work with gnupg, at least not for
key signature verification!
See my post
http://lists.gnupg.org/gnupg-users-200010/msg00216.html
Up to now nobody has even so much as commented on my findings (prove me
wrong, please ;) except Werner saying he was very short on time (I
believe you are and it is not my intention to bother you more than
necessary).
Even more, when I imported the keys from my tests into pgp (win32) to see
its reaction, I found that it is impossible to change an expired key's
trustlevel (in pgpfw 6.5.8)!
I can therefore currently not recommend using expiration dates on keys at
all. The tools at hand seem to have problems with that.
Regards,
Stefan
--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org