keys require a user-id

Wiktor Kwapisiewicz wiktor at metacode.biz
Fri May 15 15:34:31 CEST 2020


On 15.05.2020 15:21, Andrew Gallagher wrote:
> Ownertrust is per-key, but validity is per-UID.

Andrew there are two validity values:

$ gpg --edit-key andrewg
pub  rsa4096/FB73E21AF1163937
     created: 2013-07-02  expires: 2021-01-07  usage: SCA
-->  trust: unknown       validity: marginal     <--- here (A)
sub  rsa4096/6B09069314549D4B
     created: 2013-07-02  expires: 2021-01-07  usage: E
sub  rsa4096/5C1EC404D5906629
     created: 2015-04-26  expires: 2021-01-07  usage: S
sub  rsa4096/85FDF561DA8C0C46
     created: 2015-04-26  expires: 2021-01-07  usage: A
[marginal] (1). Andrew Gallagher <andrewg at andrewg.com> <-- and here (B)
[marginal] (2)  Andrew Gallagher <andrewg at llagher.net>

Value from (A) is calculated from User IDs (B).

When you sign someone else User ID it's not your User ID that is doing
the signing it it's your key that's why you need a key validity that's
separated from User ID (key validity is calculated from User ID validity).

Kind regards,
Wiktor

-- 
https://metacode.biz/@wiktor



More information about the Gnupg-users mailing list