1.4.3 // proper syntax for --edit-key cross-certify ?
Charly Avital
shavital at mac.com
Thu Apr 6 00:07:18 CEST 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
vedaal at hush.com wrote the following on 4/5/06 3:50 PM:
> what is the syntax needed to use the cross-certify
> to have a signing subkey sign the master?
>
> i tried cross-certify with --edit-key
> and got no response
> (not even the polite customary error message ;-) )
When I tried that, I was prompted to enter my passphrase after a row
showing that my signing subkey was selected:
- -----
Charly-Avitals-PBG4:~ shavital$ gpg --edit-key C91B085E
gpg (GnuPG) 1.4.3; Copyright (C) 2006 Free Software Foundation, Inc.
This program comes with ABSOLUTELY NO WARRANTY.
This is free software, and you are welcome to redistribute it
under certain conditions. See the file COPYING for details.
Secret key is available.
pub 1024D/C91B085E created: 2002-05-11 expires: never usage: SCA
trust: ultimate validity: ultimate
sub 2048g/084539C7 created: 2002-05-11 expires: never usage: E
sub 4096R/727327CF created: 2005-02-17 expires: never usage: S
[ultimate] (1). Charly Avital (1.0.7) <shavital at mac.com>
[ultimate] (2) Charly Avital (1.0.7) <shavital at netvision.net.il>
[ revoked] (3) Charly Avital (1.0.7) <shavital at netbox.com>
Command> cross-certify
You need a passphrase to unlock the secret key for
user: "Charly Avital (1.0.7) <shavital at mac.com>"
4096-bit RSA key, ID 727327CF, created 2005-02-17
Enter passphrase:
- -------------
After I enter the passphrase, I get the same output as above:
- -----
pub 1024D/C91B085E created: 2002-05-11 expires: never usage: SCA
trust: ultimate validity: ultimate
sub 2048g/084539C7 created: 2002-05-11 expires: never usage: E
sub 4096R/727327CF created: 2005-02-17 expires: never usage: S
[ultimate] (1). Charly Avital (1.0.7) <shavital at mac.com>
[ultimate] (2) Charly Avital (1.0.7) <shavital at netvision.net.il>
[ revoked] (3) Charly Avital (1.0.7) <shavital at netbox.com>
=============
But when I Quit, I am prompted to save changes:
- --------------
Command> quit
Save changes? (y/N) n
Quit without saving? (y/N) y
- --------------
I have chosen to quit without saving any changes, because the truth is I
do not fully understand what the change is, and what it would do to my
key and/or to my signing subkey.
[...]
> (the same happens after a uid is selected, and then cross-certify
> entered at the command prompt)
When you select a uid, can you select the signing subkey itself?
I can't. I can only select one of the existing uids (1,2 or 3).
>[...]
> what should the proper syntax be ?
>
I hope you get more significant feedback from the list. I just wanted to
let you know that cross-certify provokes, in my system, a certain
response and output that can be saved in the key.
Charly
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (Darwin)
Comment: GnuPG for Privacy
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org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=bq6u
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list