Re: keys require a user-id

Andrew Gallagher Fri, 15 May 2020 06:23:27 -0700

On 15/05/2020 14:01, Wiktor Kwapisiewicz via Gnupg-users wrote:
> AFAIK key validity and owner trust are per key not per User ID.


Ownertrust is per-key, but validity is per-UID. On my local machine `gpg
--list-keys wik...@metacode.biz` shows:

```
pub   rsa4096/0x6C8857E0D8E8F074 2017-01-01 [C] [expires: 2021-01-01]
      Key fingerprint = 6539 09A2 F0E3 7C10 6F5F  AF54 6C88 57E0 D8E8 F074
uid                   [ unknown] Wiktor Kwapisiewicz <wik...@metacode.biz>
uid                   [ unknown] [unknown attribute of size 83]
sub   rsa4096/0xB97A1EE09DB417EC 2017-10-18 [S] [expires: 2021-01-01]
sub   rsa2048/0x60D2F50529E2DE4F 2018-07-06 [E] [expires: 2021-01-01]
sub   rsa2048/0x97FDEF34DAB8F82B 2018-07-06 [S] [expires: 2021-01-01]
sub   rsa2048/0x3B6DFCC964CFEBC4 2018-07-06 [A] [expires: 2021-01-01]
```

Each of those `[ unknown]`s represents the validity of that particular
UID only. I could right now add a new UID <presid...@whitehouse.gov> to
my primary key. The invalidity of <presid...@whitehouse.gov> would not
invalidate <andr...@andrewg.com>.

-- 
Andrew Gallagher

signature.asc
Description: OpenPGP digital signature

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: keys require a user-id

Reply via email to