OpenLDAP schema to store OpenPGP keys?

David Shaw dshaw at jabberwocky.com
Wed Feb 22 04:26:41 CET 2006


On Wed, Feb 22, 2006 at 01:07:48AM +0100, Walter Haidinger wrote:

> > Potentially dangerous.  How sensitive is this password?  
> > Is a mode 600 file secure for your usage?
> 
> Yes, I'd think so. After all, we're talking about protecting 
> a keystore of _public_ keys... 
> 
> If GnuPG could also store secret keys (btw, can it? have never checked)

It's theoretically possible, but no keyserver works that way.

> on LDAP, this might be different story. However, at least for now, 
> being as secure as pam_ldap _is_ sufficient, IMHO.

Okay, I buy this.  I'll add binddn and bindpw to gpgkeys_ldap for
the next release.

David



More information about the Gnupg-users mailing list