Should the use of multiple UID per key be discouraged?

MFPA expires2013 at ymail.com
Sat Sep 14 01:34:14 CEST 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Tuesday 10 September 2013 at 8:01:30 PM, in
<mid:522F6C8A.4040602 at spth.de>, Philipp Klaus Krause wrote:




> GPG supports the feature of having multiple UIDs per
> key. However this requires special care of anyone
> signing such a key. AFAIK, there is no really
> user-friendly, and definitely no newbie-friendly way to
> do so.


I have often seen mention of (but not personally used) CA - Fire and
Forget (CAFF)
<http://manpages.ubuntu.com/manpages/jaunty/man1/caff.1.html>

       "CA Fire and Forget is a script that helps you in keysigning.  It takes
       a list of keyids on the command line, fetches them from a keyserver and
       calls GnuPG so that you can sign it.  It then mails each key to all its
       email addresses - only including the one UID that we send to in each
       mail, pruned from all but self sigs and sigs done by you.  The mailed
       key is encrypted with itself as a means to verify that key belongs to
       the recipient."

- --
Best regards

MFPA                    mailto:expires2013 at ymail.com

Never lean forward to push an invisible object.
-----BEGIN PGP SIGNATURE-----

iQCVAwUBUjOhB6ipC46tDG5pAQoShAP/ZFKmvB+GdDapfBdKUDDYXUH62YDI8i9K
4eAquDk0ei/zLzQ3pZXkDAKsrvAkCcvzwSZe3m6qY8DtNlxiJ1WqEg1atL5wVCwq
E3QaiagGkHedaQWdMYGhjXNcwXl+N2mH5iXD/WBgEOrq+3yU7MMyhbnfi08wBfnf
MbMmpttqnyc=
=Xs9k
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list