Feature request: expand 'clean' to 'clean total'

Neil Williams linux at codehelp.co.uk
Tue Nov 1 12:33:05 CET 2005


On Saturday 29 October 2005 9:25 am, Henry Hertz Hobbit wrote:
> I hope I am misunderstanding this.  I think I am.

I think you've missed the distinction between this happening on a local 
keyring and the effect on a keyserver. If keyserver behaviour remains as now, 
changes like this to your local keyring will have no effect on the signatures 
that other people see in their keyrings.

Each user would be free to prune their local keyring - subject to having to 
re-run `clean` if they use gpg --refresh-keys.

> Second, I have precious few public keys on my key ring, and Werner is
> one of them.  You should all of those pretty "[User ID not found]"
> after all of those sigs.  Thank goodness I am NOT part of the WOT.
> If I was (part of the WOT) and cleaned out all of those signatures
> on his key, signed it, and uploaded it to one of the keyservers so it
> reflected he had another signee, what would happen to the ones that
> were cleaned out?

Nothing - the keyserver simply adds your signature to all the others. The 
clean effect is local to your keyring. When you remove signatures from the 
copy of the public key in your local keyring, it has no effect on the copy of 
the same key in other, remote, keyrings like the keyserver or my local 
keyring.

> I am sure that most if not all of them are 
> legitimate signatures.

Probably not all - there are always a few people who sign keys without 
verifying them, there are few on my key. 

-- 

Neil Williams
=============
http://www.data-freedom.org/
http://www.nosoftwarepatents.com/
http://www.linux.codehelp.co.uk/

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : /pipermail/attachments/20051101/fdb52e71/attachment-0001.pgp


More information about the Gnupg-users mailing list