<<< Date Index >>>     <<< Thread Index >>>

Re: mutt claiming that gpg signatures aren't verified



Re: Re: mutt claiming that gpg signatures aren't verified ["Stewart V. Wright" 
<svwright+lists@xxxxxxxxxxxxxx>, Fri, Oct 24, 2003 at 02:50:06PM +0100, 
<20031024135006.GA2143@xxxxxxxxxxxxxx>]
> I'm getting slightly sick of this...

Sorry for me being rude here :-/

>  1) Look at my headers, I use the X-Request-PGP header.

I should have had a look at that header before complaining, but I've
always felt like these being redudant, as there are keyservers...

>  2) Use a proper key server. pgp.com and pgp.net suck.  They trash
>     keys.  Try

I've never had problems with the pgp.net servers, but as every network
and even servers in the same network seem to use different software, it
is hard to track which entity really sucks.

>       gpg -v --keyserver keyserver.kjsl.com --recv-key 35DB7472

That worked, thanks.

>  3) It's a subkey.  The old keyservers don't search on subkeys, but
>     AFAIK subkeys are allowed within the standard, so I'm going to
>     keep using them.

No problem with that.

> I'm sorry for appearing grumpy about this, but too many people are
> still using the old, crappy keyservers.  We yell at people for using
> mutt 1.2, so the same applies with the keyservers.

Looks like I have to dig into keyserver stuff a little...

> Try one of the following for your normal usage:
>   http://keyserver.bu.edu/

That's actually the one I got redirected to when I suggested you using
the wwwkeys.pgp.net address...

>   http://sks.keyserver.penguin.de

I'd like to use a German server, but this one seems to be slow, at least
for web access at the moment.

>   http://sks.dnsalias.net
>   http://keyserver.kjsl.com

(Yet to check out these.)

Re: Re: mutt claiming that gpg signatures aren't verified ["Stewart V. Wright" 
<svwright+lists@xxxxxxxxxxxxxx>, Fri, Oct 24, 2003 at 02:56:57PM +0100, 
<20031024135657.GB2143@xxxxxxxxxxxxxx>]
> G'day Andrew,
> 
> * Andrew Sayers <andrew-list-mutt-users@xxxxxxxxxxxxxx> [031024 14:33]:
> > Related to this, it seems that the pgp.net and keyserver.net domains
> > don't share keys between them.  Is it best to put your key on both
> > servers, or just one, or what?  I've recently added an "X-PGP" header to
> > my messages for this reason.

From what I found out, keyserver.net sucks the most of all...
The major networks in fact do share keys.

> The only problem with the X-PGP (or the preferred(???) X-Request-PGP [1])
> header is that most people don't look at them.  :-(

*sigh*

Christoph
-- 
Christoph Berg <cb@xxxxxxxxxxxxxxxx>, http://www.df7cb.de/
Wohnheim D, 2405, Universität des Saarlandes, 0681/9657944

Attachment: signature.asc
Description: Digital signature