Security of the gpg private keyring?

MFPA expires2011 at ymail.com
Wed Mar 2 00:29:19 CET 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Tuesday 1 March 2011 at 8:56:56 PM, in
<mid:201103012156.57096 at thufir.ingo-kloecker.de>, Ingo Klöcker wrote:


> Hmm. Why do the keyservers need to support it at all?
> IMO the clients  that want to upload a key should check
> for this flag and warn the user if a key has this flag.

I think the warning would be a good idea because it should serve to
reduce accidental uploading of keys (except by those who view such
warnings as "noise" and just click through without really reading
them).

Since the keyserver-no-modify flag is set by default in GnuPG and this
warning would be triggered for a large percentage of keys, why bother
checking for the flag? "Do you really want to publish this key to a
keyserver?" could be asked every time the user told the client to
upload any key, perhaps also displaying some info about the key and
the server.


- --
Best regards

MFPA                    mailto:expires2011 at ymail.com

If it aint broke, fix it till it is broke!
-----BEGIN PGP SIGNATURE-----

iQE7BAEBCgClBQJNbYFUnhSAAAAAAEAAVXNpZ25pbmdfa2V5X0lEIHNpZ25pbmdf
a2V5X0ZpbmdlcnByaW50IEAgIE1hc3Rlcl9rZXlfRmluZ2VycHJpbnQgQThBOTBC
OEVBRDBDNkU2OSBCQTIzOUI0NjgxRjFFRjk1MThFNkJENDY0NDdFQ0EwMyBAIEJB
MjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0N0VDQTAzAAoJEKipC46tDG5pFKAEAIXA
JlNpZtG1aUk4j+t25EVUMh/Wwx02fSLwsRfmjgb8W46B6ZWUJz3qkU0oum+HdKQn
U/ADiI1jQsS33jcKtqHQd6okI72r5w4dEWfFc7E8Y0c42g4x/1n1kJd5ofSjivZV
DxQf3NC4rwtYNebSThraOasVkTmr2V+CQHnfw04v
=/QiR
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list