Making the case for smart cards for the average user

MFPA 2014-667rhzu3dc-lists-groups at riseup.net
Tue Apr 7 02:46:05 CEST 2015 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Monday 6 April 2015 at 5:04:09 PM, in
<mid:5522AE79.2030208 at adversary.org>, Ben McGinnes wrote:


> Great plan ... how does the shell know that the angle
> brackets are a part of the GPG UID format?

I was referring to the way the email address is passed by an MUA to
GnuPG to search for a key, which I don't imagine involves a shell.
Specifically, I asked the OP to reconsider his decision not to include
angle brackets around the email address in his "email address only"
simplified UID format. He reconsidered and added the angle brackets.

DKG has raised a broader issue: keys exist with a UID containing an
email address not surrounded by the conventional angle brackets, which
causes searching for an exact match on the email address in the way
the GnuPG man-page prescribes (by enclosing that email address in
angle brackets) to fail. He has simply proposed that the absence of
angle brackets in the UID should not cause the email address match to
fail. I see that as entirely reasonable.



> If I run these commands currently:

> gpg -k foo at example.org
> gpg -k <foo at example.org>
> gpg -k "foo at example.org"
> gpg -k "<foo at example.org>"

> The first, third and fourth all work, but the second
> complains, as it rightly should, because bash uses <
> and > for other purposes, specifically manipulating
> STDIN and STDOUT.

Fair enough. But they are not all equivalent. The string being
searched for by numbers one and three does not contain opening and
closing angle brackets, whereas the string number four is trying to
match does include them.

And as you say, the second is not valid because < and > are special
characters; presumably they should be escaped with a backslash, or the
whole string enclosed in quotes as in number four.



> So I think you might find it to be
> something that can't be fixed within GPG.

I think DKG's suggestion will fix it within GPG.


- --
Best regards

MFPA                  <mailto:2014-667rhzu3dc-lists-groups at riseup.net>

Puns are bad but poetry is verse.
-----BEGIN PGP SIGNATURE-----
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=
=UF/3
-----END PGP SIGNATURE-----

More information about the Gnupg-users mailing list