Keyserver doesn't honour signature removal

David Shaw dshaw at jabberwocky.com
Tue Apr 21 15:14:53 CEST 2009 

On Apr 21, 2009, at 1:31 AM, Sven Radde wrote:

> Hi!
>
> David Shaw schrieb:
>>> With PKA, you can even get automatic key retrieval without a  
>>> keyserver.
>>
>> That's not quite right.  PKA records in DNS can point to a keyserver,
>> but you still need the keyserver in the mix somewhere (though, like  
>> the
>> "preferred keyserver" feature, that "keyserver" might be a key  
>> stored on
>> a web server).
>
> True, you still need some kind of server (one might argue that even
> using CERT, you have a 'keyserver' - the DNS server itself).
> The notable difference, however, is that a web server presents my key
> exactly as *I* desire, allowing for removed signatures, replacing the
> key by a new one etc.
> PKA is the way to get somebody to use my web server already for  
> initial
> key retrieval (although this might not be the primary purpose of  
> PKA) so
> that the (synchronizing merge-only) keyserver network is avoided.

Absolutely.  I do the same thing, just using CERT.  CERT has two  
modes: "PGP" (where the whole key lives in DNS), and "IPGP" for  
Indirect PGP, where you give a URL as in PKA.  IPGP and PKA are  
basically the same thing from the find-a-key perspective.

It's sort of questionable how practical PGP mode is, with the whole  
key stuffed in to DNS.  You'd get into DNS over TCP fairly quickly,  
and then (poor) firewalls can start being cranky.  GnuPG does support  
getting keys this way, and I suppose it could be useful with a  
stripped down key (no 3rd party signatures, or even the output of  
"minimize") and expect that people will eventually learn the rest of  
the key info from a full keyserver.  I suspect the basic idea is more  
useful for distributing other OpenPGP objects like revocations, as  
they are quite small and the DNS check for a revocation is quite cheap.

IPGP, though, is very handy.

>> CERT is a standardized way (RFC-4398) to put OpenPGP keys in DNS.
>
> Unfortunately, my provider does not allow me to set CERT type DNS
> records. TXT is possible (for, e.g., SPF and PKA).
> I will ask whether they can do it (since it appears to be natively
> supported in BIND 9, right?)

Ugh, that's a problem.  CERT has been supported since mid BIND 8 (and  
arguably longer since you can do stuff like "TYPE37" and raw  
encoding), but if your provider doesn't let you set arbitrary records,  
then you're stuck.  I've seen providers that do DNS through a web GUI  
with a drop-down menu that allows you to choose A, CNAME, or TXT.  I  
suppose we should be grateful they at least allow TXT!

David

More information about the Gnupg-users mailing list