David SMITH dave.smith at st.com
Fri Jul 18 14:17:58 CEST 2008

Hi all,

Could someone please explain what the --export/import-ownertrust commands
actually do?  I have a colleague who is basically using it to exchange
key fingerprints - i.e. if Alice wants to tell her copy of GPG that
Bob's key is valid, then she gets Bob to run gpg --export-ownertrust,
send her the output file, and she then runs gpg --import-ownertrust on
that file.

I've searched on the net, but I can't find much about what the
--export/import-ownertrust do, beyond what is in the manpage.  What is
actually stored in this exported ownertrust database?

More importantly, I suspect that this is a bad thing to do.  What
problems does it cause?


David Smith        | Tel: +44 (0)1454 462380    Home: +44 (0)1454 616963
STMicroelectronics | Fax: +44 (0)1454 462305  Mobile: +44 (0)7932 642724
1000 Aztec West    | TINA: 065 2380          GPG Key: 0xF13192F2
Almondsbury        | Work Email: Dave.Smith at st.com
BRISTOL, BS32 4SQ  | Home Email: David.Smith at ds-electronics.co.uk

More information about the Gnupg-users mailing list