Sign key and export for each UID

MFPA expires2013 at ymail.com
Thu Sep 19 01:14:03 CEST 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Monday 16 September 2013 at 9:20:45 PM, in
<mid:CA+4dSw6Ct3buQPp-04+37O0bfCF6XAQOZvFh+xEhayWg3kFtAg at mail.gmail.com>,
Pete Stephenson wrote:


> I consider UIDs
> corresponding to no-longer-functioning email addresses
> to be invalid and won't sign them as I have no idea if
> the keyholder is the actual owner of that address.

Doesn't the CAFF method (emailing the key with your signature on just
one uid in an encrypted message to the email address in that uid) take
care of that for you? Unless the same person has access to
both the secret key and the email address, they don't have access to
your signature on that uid.

- --
Best regards

MFPA                    mailto:expires2013 at ymail.com

Live your life as though every day it was your last.
-----BEGIN PGP SIGNATURE-----

iQCVAwUBUjozzqipC46tDG5pAQqvxQP+PHgNpjl9joLZQHH2iHXD7MnE3LC65LT1
DlfZd6/IkcwNZWYHJLjr2JXQga5TNSgvT+N1z7sXW/C2Trarg7f55YDVAqe2HwoU
CANkwK0acARcYwEl7+bfh+f9ynDc0LoXc7zqTxtJB6h1GZhs6HixImX/lEluduUi
B3ONX7K3gc8=
=urRp
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list