Pawel Shajdo zwon at
Tue Dec 27 23:44:47 CET 2005

On Dec 27, 2005 at 16:30 -0500, John W. Moore III wrote:
> While waiting for Werner or David; I'll share what I "know" about PKA in
> 1.4.3cvs:
>     * Implemented Public Key Association (PKA) trust sub model.  This
>       is an optional trust model on top of the standard ones.  It makes
>       use of special DNS records and notation data to associate a mail
>       address with an OpenPGP key. It is by default not used.  To use
>       it you need to set the new option --allow-pka-lookup and an
>       appropriate trust-model.  Also added new keyserver option
>       auto-pka-retrieve which is enabled by default but only working
>       if --allow-pka-lookup is also used.
Thanks! Now the things much clearer. Can somebody point me to RFC or
IETF draft (or other info) about this special DNS recodrds?

   Pawel I. Shajdo

More information about the Gnupg-users mailing list