SKS Keyserver, HKPS, and GnuPG 2.1

Samir Nassar samir at
Thu Mar 19 00:03:00 CET 2015

On Wednesday, March 18, 2015 06:18:53 PM Daniel Kahn Gillmor wrote:
> It looks to me like you're using the server's certificate as the CA
> certificate.  I don't think that's going to work.  Maybe you want to use
> the Addtrust root cert (attached here)

Ahem. You are so very right. Somehow it escaped me that what I want for the 
setup is the CA cert, this despite dirmngr.conf having the line: hkp-cacert

> and then point hkp-cacert to that?

Now things work. I feel a bit foolish, but it's just wounded ego.

David Wood wrote me off-list and pointed out fixes access to my keyserver so I am 
writing for clarification.

Thank you Kristian and Daniel and David for your help.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/attachments/20150319/9d5e3263/attachment.sig>

More information about the Gnupg-users mailing list