Specify UID for --sign-key
Muri Nicanor
muri+gnupg-users at immerda.ch
Fri Feb 26 19:23:20 CET 2016
hi dkg and list,
On 02/26/2016 03:49 AM, Daniel Kahn Gillmor wrote:
[...]
> On Thu 2016-02-25 18:59:53 +0100, Muri Nicanor <muri+gnupg-users at immerda.ch> wrote:
>> is it possible to specifiy the uid for --sign-key (so i don't have to go
>> through the gpg --edit dialog)? i tried using
[...]
> In GnuPG 2.1:
>
> --quick-sign-key fpr [names]
>
> --quick-lsign-key fpr [names]
> Directly sign a key from the passphrase without any further user
> interaction. The fpr must be the verified primary fingerprint
> of a key in the local keyring. If no names are given, all useful
> user ids are signed; with given [names] only useful user ids
> matching one of theses names are signed. The command --quick-
> lsign-key marks the signatures as non-exportable. If such a
> non-exportable signature already exists the --quick-sign-key
> turns it into a exportable signature.
>
> This command uses reasonable defaults and thus does not provide
> the full flexibility of the "sign" subcommand from --edit-key.
> Its intended use is to help unattended key signing by utilizing
> a list of verified fingerprints.
thanks a lot!
are these reasonable defaults whats explained in the first paragraph or
is there more to it? in particular i'm interested in the cert-expire
option- i tried to use --quick-sign-key with --default-cert-expire 1y,
but then i didn't find a way to review the expiry date of the signature
(is there a switch to see the expiry date of signatures?)
thanks and cheers,
muri
More information about the Gnupg-users
mailing list