protecting pub-keys from unwanted signatures

MFPA 2014-667rhzu3dc-lists-groups at riseup.net
Mon Aug 17 00:53:07 CEST 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Sunday 16 August 2015 at 6:15:16 PM, in
<mid:20150816171516.9276343128 at smtp.hushmail.com>, vedaal at nym.hush.com
wrote:


> This would require the owners of the keys to do
> periodic checking of their keys and cross-certify the
> signatures they want.

Why bother periodically checking? If somebody doesn't have the
courtesy to send the signature to the key owner rather than publishing
it themselves, they shouldn't expect the key owner to cross-certify
it.



> The implementers can best decide how much extra work
> this would require, and if there is a simpler better
> way to accomplish the desired result.

The "keyserver no-modify" flag was simple. But it didn't achieve the
desired result.

- --
Best regards

MFPA                  <mailto:2014-667rhzu3dc-lists-groups at riseup.net>

The second mouse gets the cheese
-----BEGIN PGP SIGNATURE-----
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=
=+DOC
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list