protecting pub-keys from unwanted signatures
Philipp Schafft
lion at lion.leolix.org
Sun Aug 16 13:18:20 CEST 2015
reflum,
On Sun, 2015-08-16 at 10:10 +0200, Stefan Claas wrote:
> Hello Werner and all,
>
> after seeing Facebook's public key a couple of days ago,
> i was wondering if it's possible to enhance GnuPG in a
> future version, so that it no longer allows someone to
> sign a public key without approval of the owner.
Maybe you can explain your use case a bit.
Think about this:
You can easily create a little document with the fingerprint of the key
you want to sign, timestamp, maybe other notions and sign that. Then you
can publish this document. In fact the signature on a key is very
similar to such a document. Just that it has a machine readable
structure.
--
Philipp.
(Rah of PH2)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: This is a digitally signed message part
URL: </pipermail/attachments/20150816/e229402c/attachment.sig>
More information about the Gnupg-users
mailing list