making the X.509 infrastructure available for OpenPGP

MFPA 2014-667rhzu3dc-lists-groups at riseup.net
Thu Feb 6 15:19:04 CET 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Tuesday 4 February 2014 at 6:38:07 PM, in
<mid:52F1338F.7030004 at digitalbrains.com>, Peter Lebbing wrote:


> FWIW, CACert signs OpenPGP keys of verified people with
> key 0xD2BB0D0165D0FD58 if you want them to. Since it's
> 1024-bit DSA, it's a bit dated in some respects. And
> CACert still isn't in the default trusted root bundle
> on quite some systems, I believe.


And X.509 certificates can be imported into PGP [1], but are not
accepted by GnuPG unless they are self-signed. That is, if I read
correctly.

[1] <https://web.archive.org/web/20061208105106/http://home.twcny.rr.com/tmccune1/PGP_X509s.pdf>


- --
Best regards

MFPA                    mailto:2014-667rhzu3dc-lists-groups at riseup.net

Adults are obsolete children.
-----BEGIN PGP SIGNATURE-----

iPQEAQEKAF4FAlLzmfJXFIAAAAAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0
N0VDQTAzAAoJEKipC46tDG5pH/ID/2HgiWbKHoT/5UHtTGePWO6qATeFN79yc4fw
SfSUVlVL0d+R+zDzQ0QYkW7YDQFp6RwUykPXWsrgiIXwmHNcBsxulFlh2IAjUbCa
3j9orcIItKpM8lPEffQubfvlPfb6YSXLvu6QesbzTR9JVEYZT2hUeGWBqGqBpRn+
NIB6rt0l
=TIZD
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list