key revocation

Atom 'Smasher' atom at suspicious.org
Thu May 13 17:21:03 CEST 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, 13 May 2004, Werner Koch wrote:

> > q2 - are there any (broken?) applications that will accept a revocation
> > key generated by a subkey as valid?
>
> I don't know.  Did you find such a bug in gpg?
=============================

based on my tests, gpg (1.2.4) seems well behaved here (as i would
expect). i'm about to post a tutorial where this could be an issue.



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
On Thu, 13 May 2004, Len Sassaman wrote:

> > q2 - are there any (broken?) applications that will accept a revocation
> > key generated by a subkey as valid?
>
> PGP versions 5.x through 6.5.7 will accept a revocation generated by *any*
> key as valid.
=============================

i'll make a note of that. thanks....


	...atom

 _________________________________________
 PGP key - http://atom.smasher.org/pgp.txt
 762A 3B98 A3C3 96C9 C6B7 582A B88D 52E4 D9F5 7808
 -------------------------------------------------

	"MEATLESS" - US government standards allow the use of the
	 word "Meatless" to allow up to 2% animal product and/or
	 meat content.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)
Comment: What is this gibberish?  -  http://atom.smasher.org/links/#digital_signatures

iEYEARECAAYFAkCjkmQACgkQnCgLvz19QeOhkwCffBzAJZwi+ca9RB3DXkgBOohQ
L/YAoIekxbJt/x4/OmfUHH414zydq4CI
=D/1u
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list