deleting signatures from uids
Peter S. May
me at psmay.com
Thu Nov 2 21:52:28 CET 2006
-----BEGIN PGP SIGNED MESSAGE-----
Alex Mauer wrote:
> Is there any reason that the keyserver needs to continue to redistribute
> expired, revoked, or otherwise invalid (e.g. superseded) signatures?
> I can't think of any.
I would think that it's important for keyservers to widely distribute
the revocation certificates of revoked signatures. If the keyservers
simply omitted revoked signatures from search results, how would a
client know that this uid was revoked? Stripping data that isn't
particularly useful is a job better left to the client.
Word -- PSM
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v188.8.131.52 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----
More information about the Gnupg-users