Difficulty of fixing reconciliation

Jason Harris jharris at widomaker.com
Fri Aug 16 00:44:53 CEST 2019


> On Aug 15, 2019, at 3:33 PM, Werner Koch <wk at gnupg.org> wrote:
> 
> On Thu, 15 Aug 2019 00:02, gnupg-users at gnupg.org said:
> 
>> But at least then we will want to add cryptography to see which
>> selfsigs are truly legitimate, right?
> 
> That would be the first and most important step to get the keyservers
> back for the WoT

Actually, I think hockeypuck might be validating selfsigs already:

  https://github.com/hockeypuck/openpgp/blob/v1/pubkey.go

when it calls CheckSig().

(It isn’t that hard to install and loads most of the SKS keydump keys, but you do need PostgreSQL and then to sync with SKS to get the remaining (malformed) keys that apparently didn’t get imported from the dump.)

Sent from my iPad
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20190815/8e6e5aa8/attachment.html>


More information about the Gnupg-users mailing list