<<< Date Index >>>     <<< Thread Index >>>

Re: about pgp-signed messages



G'day David,

* David Yitzchak Cohen <lists+mutt_users@xxxxxxxxxxxxxx> [031104 22:52]:
> Well, I kinda forgot to include the link for the footnote above [1] ... oops 
> ;-)
> 
>  - Dave
> 
> [1]
> http://www.bigfatdave.com/dave/bin/getkeys
> 

Possibly silly question, but are 
   wwwkeys.us.pgp.net
   www.mandrakesecure.net
   www.keyserver.net
keyservers that _don't_ autosync with each other?

The whole point of the keyservers is that they talk to each other and
each keyserver has an identical copy of ALL the keys.  That way you
submit to one and your key appears on all the others.  More
importantly that is why the sort of functionality you've coded up is
not in gpg -- it's just not needed.


As an aside you really should drop pgp.net as it is crap^D^D^D^Dnot a
particularly good implementation of the OpenPGP standard.  In
particular it mangles subkeys (BAD dog!) and doesn't allow searching
on subkeys (like I use for signing).

Try replacing it with subkeys.pgp.net (if you REALLY must use a
pgp.net machine) or by preference 
  keyserver.kjsl.com
  keyserver.bu.edu
  sks.keyserver.penguin.de
  sks.dnsalias.net


Cheers,

S.

(Who signs his messages, uses subkeys, has X-Request-PGP headers, uses
muttgpg[1], doesn't have a tinfoil hat, hates the old style keyservers
which mangled his key, and doesn't care about those people who
complain about signed messages[2] ;) )


[1] http://www.liv.ac.uk/~svwright/software/#muttgpg
[2] http://www.liv.ac.uk/~svwright/security/signed-mail-rant.html


-- 
European Citizens: Please do a little work to convince the European
Parliament to reject software patents. This page explains the issue
and provides suggestions for action; take the time to participate.
  http://swpat.ffii.org/

Attachment: signature.asc
Description: Digital signature