gpg.conf recommendations (FAQ improvement) was: GnuPG 1.4.19 - Encryption Questions

Kristian Fiskerstrand kristian.fiskerstrand at
Wed Aug 17 17:32:03 CEST 2016

On 08/17/2016 05:04 PM, Bernhard Reiter wrote:
> Am Mittwoch, 17. August 2016 16:53:57 schrieb Werner Koch:
>> FWIW, I really wonder why people seem to use the keyid to check keys.
> It is not done to check keys, it done to distinquish keys to select
> in user interfaces. 

At which point even short keyid isn't an issue as long as they only
select amongst valid keys to begin with, unless they actually have two
people with colliding keyids by coincidence that they communicate with.

Kristian Fiskerstrand
Twitter: @krifisk
Public OpenPGP certificate at hkp://
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
"We can only see a short distance ahead, but we can see plenty there
that needs to be done."
(Alan Turing)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20160817/a35925b1/attachment.sig>

More information about the Gnupg-users mailing list