Replacement subkeys
David Shaw
dshaw@jabberwocky.com
Thu Sep 20 02:43:02 2001
--UugvWAfsgieZRqgk
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Thu, Sep 20, 2001 at 01:00:11AM +0100, Nick Lamb wrote:
> Once again I tried to actually use GnuPG for something, and was pretty
> much immediately stopped short by a problem.
>=20
> Here you can see that I have created a new subkey for 1024D/741BE7D8
> and of course I have the public and private components on this local
> machine...
>=20
> [njl98r@chef njl98r]$ gpg --list-keys njl98r
> pub 1024D/741BE7D8 1999-10-11 Nicholas Lamb <njl98r@ecs.soton.ac.uk>
> uid Nicholas Lamb <njl195@zepler.org.uk>
> sub 1024g/427333F4 1999-10-11 [expires: 2000-11-09]
> sub 1024g/8458535B 2001-07-26 [expires: 2002-07-26]
>=20
> It would be nice if other users could have this new subkey, so that when
> they send me mail it doesn't complain about the old, expired subkey
> So..
>=20
> [njl98r@chef njl98r]$ gpg --send-keys 741BE7D8
> gpg: success sending to `wwwkeys.pgp.net' (status=3D200)
>=20
> However it appears that either GnuPG never bothers to tell the server
> about the new subkey, or the server never bothers to record it. When
> I look at the key list on other people's systems (yes, from the same
> server after I updated it) the new subkey is missing.
>=20
> What am I doing wrong? How do I make it do what I (obviously) intended?
You're doing it just right, and so is GnuPG. There is, alas, a bug in
some of the HKP keyservers that makes them unable to handle keys with
multiple subkeys.
I'm afraid I don't know exactly *which* keyservers are buggy.
certserver.pgp.com is known good, but is not a HKP keyserver so you
need to use the web interface or my LDAP keyserver addition to GnuPG.
I believe pgp.dtype.org is good as well, and it's a HKP server.
David
--=20
David Shaw | dshaw@jabberwocky.com | WWW http://www.jabberwocky.com/
+--------------------------------------------------------------------------=
-+
"There are two major products that come out of Berkeley: LSD and UNIX.
We don't believe this to be a coincidence." - Jeremy S. Anderson
--UugvWAfsgieZRqgk
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iQEVAwUBO6k6wIccwqs8s7QVAQGjbwf/eL8gBQcoRb5LtMcHOt587Rv7579j++RQ
tlO8xPRyDBZDtdh+aXgYKrpvrUA+vpzW8oSQO2+HdEaRJkcXAXfO/xY8tvLPIBnS
+O9Up73HacWNnS6wcawApe7LIDk6mM6mMNP6iyL0dhyhtG3SSXU8Pt1eJ8qQip7M
J/CDMuzFGnm3Mt1TOGGp7MaxUIQfb2I3bxsRRtnC1+i5FLCCl5bVQl/YasyaABCB
urCoxX/s1rtBksc6dnwGTI+e/IwXzSzKv2ju7Ycv9JvPWd7bUWOjjV6MSJPzdQja
ie68R8s7dVrceghusWbU/h7MdlPrUKxJWV4TokmOcbrbtcJfKDS4+A==
=z9th
-----END PGP SIGNATURE-----
--UugvWAfsgieZRqgk--