deluid // why no passphrase required ?
Michael Daigle
list-gnupg at mikedaigle.ca
Wed Aug 10 23:34:53 CEST 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
In reply to vedaal at hush.com's message sent 2005-08-10 17:18:
> when adding a new userid, gnupg understandably requires a passphrase,
>
> why doesn't gnupg require a passphrase when deleting a uid ?
You're not issuing a signature when deleting a uid.
> (granted, if someone found my secring.gpg, this would be my least
> worry ;-)
>
> but, in principle, shouldn't all key editing functions require a
> passphrase ?
What does it hurt to delete a uid, or even a key? You seem to be asking
for keyring permissions. That's beyond GnuPG's purpose. You should store
your keyrings in an appropriately secured volume if you're worried about
accidental or intentional removal of public keys or uid's.
- --
Mike Daigle http://www.mikedaigle.ca
My PGP Key mailto:pgpkey at mikedaigle.ca
Gossamer Spider Web of Trust http://www.gswot.org
-----BEGIN PGP SIGNATURE-----
Comment: GSWoT - Gossamer Spider Web of Trust - www.gswot.org
iD8DBQFC+nL8NuccKlqTLlMRA2ZoAJ46SY8nKK8jIHAzs7vQszEvKIObqACfWrnX
D9NsHb1WkgmyN8oy7tz05mQ=
=j7Bi
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list