LDAP-based Keyserver

Kristian Fiskerstrand kristian.fiskerstrand at sumptuouscapital.com
Sat Feb 28 15:42:04 CET 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On 02/28/2015 01:23 PM, Hauke Laging wrote:
> Am Sa 28.02.2015, 12:27:05 schrieb Neal H. Walfield:
> 
>> In that time, OpenLDAP configuration has gotten a lot more 
>> complicated.  I've modernized and significantly expanded his
>> tutorial. You can find it here:
>> 
>> http://wiki.gnupg.org/LDAPKeyserver
> 
> Doesn't refer to your work but is a general question as I have
> never used LDAP:
> 
> Is there any advantage in using LDAP for this? Or is this a "We
> have the LDAP server anyway thus we add the keyserver stuff instead
> of using a separate keyserver" decision?

Can't speak as to the motives of the OP, but at least Symantec
Encryption Server can be configured to look for keys on LDAP server on
keys.[domain] of the recipient to try to establish an OpenPGP channel.
This product does not support the HKP protocol, so I'm actually
experimenting with a HKP<->LDAP gateway using OpenLDAP myself.

- -- 
- ----------------------------
Kristian Fiskerstrand
Blog: http://blog.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Public OpenPGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
- ----------------------------
Nihil lacrima citius arescit
Nothing dries more quickly than a tear
-----BEGIN PGP SIGNATURE-----

iQEcBAEBCgAGBQJU8dO3AAoJEP7VAChXwav6Bh8IALdNFfEl8rU9byZYLyStpnrP
mwDzVc+kWqhXDtWyd5oG9YaVzVDMGUK01MEpqWW1/UqwF8QorztMpkn2SUe1Fvns
941Ga2ADFpRDMuCj/mythm5YmIWrtqkmBPm113szQDXYmsO3sDIywt/uirTqb8tZ
mU65e6niRAE5/E9Fgk9Go5MYsU+D1gGYcc33FFg4D7vK4bc9D1xdr+RmvhhpogfE
3VJNDrd+Yi2SOykfRHCnCsjuDkYqRMkeYS3h4QacnYKSEX8xoNo+vLGpdoxh4x1U
vmd8lFv9jjXTI7Dtcq9WuanyUDiJcGbiHRdiDUWFeNpHUpiaU90SoA6ZxyliJ7k=
=GML0
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list