Duplicated User IDs arisen

Richard Laager rlaager at wiktel.com
Thu Jun 17 02:57:01 CEST 2004


 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

...
> which makes it questionable, in certain people's eyes,
> in a security application.

Keyservers are not trusted, by definition. Key signatures provide the
requisite security.

> Why jharris's patches for the much more common (and written in a
> commonly used language) PKS haven't been applied to the main source
> tree there would be a question for the maintainers of that
> keyserver software.

All publicly available patches for PKS that I'm aware of have been
applied to the tree available at http://pks.sf.net. The latest CVS
version there has been updated to use Berkeley DB 4. However, I think
SKS should be used instead of PKS if possible. PKS has a number of
bugs inherent in its design and is not being actively developed.

Richard Laager

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2
Comment: If you don't know what this is, you can safely ignore it.

iQA/AwUBQNDsWG31OrleHxvOEQJX3QCfdW0Xm17nD7u/QgDefxWgXJZsy2gAn3tu
KaFZDXzJu8dxP/UWSt2+O6HT
=N8/r
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list