Trying to get PKA working
Philip Colmer
philip.colmer at linaro.org
Wed Feb 21 16:52:19 CET 2024
Thank you, Werner, for your helpful reply.
One thing I would like to check. You said that gpg
--locate-external-key -v foo at example.org can be used to test this, and
that works. The wiki (https://wiki.gnupg.org/WKDHosting) says to use
gpg --homedir "$(mktemp -d)" --verbose --locate-keys
your.email at example.org ... and this doesn't work.
Should I be concerned? Do I need to change something for the latter
example to work? Or is that deprecated now and your example is the
valid one?
Regards
Philip
On Wed, 21 Feb 2024 at 11:39, Werner Koch <wk at gnupg.org> wrote:
>
> Hi!
>
> Please don't use PKA. Any remaining support will be removed anyway.
> The Web Key Directory is a far better and easiert way to get
> certificates. In fact it is enabled by default and used transparently
> in Kleopatra and with the Windows GpgOL plugin. Other Unix mailers
> might also have support for it.
>
> https://wiki.gnupg.org/WKD
>
> But take care; this is a wiki and information may be a bit confusing.
> For example I would suggest to use the gpg-wks-client command
> --install-key or even --mirror to prepare a local copy of the WKD and
> then sync this to the server. This way you don't need to install the
> web Key Server stuff etc.
>
> Testing is a mere
>
> gpg --locate-external-key -v foo at example.org
>
>
>
> Salam-Shalom,
>
> Werner
>
> --
> The pioneers of a warless world are the youth that
> refuse military service. - A. Einstein
More information about the Gnupg-users
mailing list