keys require a user-id
Ingo Klöcker
kloecker at kde.org
Fri May 15 14:35:44 CEST 2020
On Freitag, 15. Mai 2020 13:29:31 CEST Stefan Claas wrote:
> What I don't understand is why you are not liking the idea to allow
> GnuPG to automatically import and process UID-less public key blocks,
> if people who trust the GnuPG brand ask for this?
Because in GnuPG the validity of keys is bound to validity and owner trust of
UIDs. No UID -> invalid key. Why do you want to be able to import a key in
GnuPG that would be utterly unusable?
> GnuPG always asks IIRC new users for their Name and email address
> and does not tell them in advance that they can use a free form UID,
> without an email address, thus being able to use a key for multiple
> accounts or purposes, without adding additional UIDs.
To cite Robert J. Hansen:
"Unless you know what you're doing and why, use the defaults."
Consequently, it's a good thing that GnuPG, by default, doesn't bother new
users with difficult decisions.
Regards,
Ingo
More information about the Gnupg-users
mailing list