keys require a user-id
wiktor at metacode.biz
Fri May 15 15:34:31 CEST 2020
On 15.05.2020 15:21, Andrew Gallagher wrote:
> Ownertrust is per-key, but validity is per-UID.
Andrew there are two validity values:
$ gpg --edit-key andrewg
created: 2013-07-02 expires: 2021-01-07 usage: SCA
--> trust: unknown validity: marginal <--- here (A)
created: 2013-07-02 expires: 2021-01-07 usage: E
created: 2015-04-26 expires: 2021-01-07 usage: S
created: 2015-04-26 expires: 2021-01-07 usage: A
[marginal] (1). Andrew Gallagher <andrewg at andrewg.com> <-- and here (B)
[marginal] (2) Andrew Gallagher <andrewg at llagher.net>
Value from (A) is calculated from User IDs (B).
When you sign someone else User ID it's not your User ID that is doing
the signing it it's your key that's why you need a key validity that's
separated from User ID (key validity is calculated from User ID validity).
More information about the Gnupg-users