Why isn't this old and very trusted PGP key accepted by GPG?

Todd Freedom_Lover at pobox.com
Tue Oct 14 01:04:44 CEST 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Baby Peanut wrote:
> $ gpg --recv-keys 40BD3D55
>
> worked but I still get
>
> $ gpg --import Victor_A_Abell.pgp 
> gpg: WARNING: using insecure memory!
> gpg: please see http://www.gnupg.org/faq.html for more information
> gpg: key 40BD3D55: no valid user IDs
> gpg: this may be caused by a missing self-signature
> gpg: Total number processed: 1
> gpg:           w/o user IDs: 1
>
> I am such at PGP & GPG dilettant that I don't really know what to do
> next about this.

Check the allow-non-selfsigned-uid option.  The gpg man page says
this:

    --allow-non-selfsigned-uid

    --no-allow-non-selfsigned-uid
        Allow the import and use of keys with user IDs which are not
        self-signed.  This is not recommended, as a non self-signed
        user ID is trivial to forge.  --no-allow-non-selfsigned-uid
        disables.

- -- 
Todd        OpenPGP -> KeyID: 0xD654075A | URL: www.pobox.com/~tmz/pgp
======================================================================
Any sufficiently advanced technology is indistinguishable from a
rigged demo

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
Comment: When crypto is outlawed bayl bhgynjf jvyy unir cevinpl.

iD8DBQE/i3Xbuv+09NZUB1oRAhD9AKCY3D603kZO1yAFotU8JaT7Q1xwHACfZ4OH
wEcgnnhz+8Dha2U5p+9XYZY=
=tZGB
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list