gpg auto-locate-key selects expired/revoked key
Andrew Gallagher
andrewg at andrewg.com
Thu Jun 9 13:08:06 CEST 2022
On 09/06/2022 11:50, Jan Eden wrote:
> jan ~ % gpg --refresh-key 0xFB73E21AF1163937
> gpg: refreshing 1 key from hkp://pgp.surf.nl
> gpg: key FB73E21AF1163937: "Andrew Gallagher <andrewg at andrewg.com>" not changed
> gpg: Total number processed: 1
> gpg: unchanged: 1
You're using the pgp.surf.nl keyserver, but it has been broken for some
time (it's currently lagging by about 360 thousand keys). pgp.surf.nl
was configured by default in some previous releases of gnupg but has
since been replaced.
You should edit dirmngr.conf and change your default keyserver to e.g.
keys.openpgp.org or keyserver.ubuntu.com (other keyservers are
available, see https://spider.pgpkeys.eu).
Example:
```
% more ~/.gnupg/dirmngr.conf
keyserver hkps://pgpkeys.eu
```
A
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20220609/cd6e8fcf/attachment.sig>
More information about the Gnupg-users
mailing list