On 09/13/2013 11:35 AM, Nicholas Cole wrote:
> Well. Why not trust your circle of contacts (because anyone using this
> scheme must be in a small circle) not to upload the keys to
> keyservers?
>
> Perhaps if there is enough demand gpg could even have a "Never send
> these keys to keyservers" opti
On 09/13/2013 08:24 AM, Nicholas Cole wrote:
> I don't think this is sensible. What is the point of a UID that
> cannot be used by someone else? If the UID is shared with anyone else
> (even privately), it must have a self-signature, and so that signature
> must be exportable.
It is possible
On 09/13/2013 09:49 AM, Peter Lebbing wrote:
> On 2013-09-13 14:24, Nicholas Cole wrote:
>> The correct way would be to have keyservers
>> honour the no-modify flag, or perhaps have some notation on the ID
>> that prevents uploading to a public keyserver. I myself would favour
>> the latter approa
On Fri, Sep 13, 2013 at 3:42 PM, Daniel Kahn Gillmor
wrote:
> On 09/13/2013 09:49 AM, Peter Lebbing wrote:
>> On 2013-09-13 14:24, Nicholas Cole wrote:
>>> The correct way would be to have keyservers
>>> honour the no-modify flag, or perhaps have some notation on the ID
>>> that prevents uploading
On 09/13/2013 10:17 AM, David Shaw wrote:
> On Sep 13, 2013, at 1:22 AM, Daniel Kahn Gillmor
> wrote:
>
>> GnuPG is currently not able to create a non-exportable self-sig. If you
>> try to do this, it gives an error:
>>
>> WARNING: the signature will not be marked as non-exportable.
>
> This i
On Fri, Sep 13, 2013 at 3:29 PM, Daniel Kahn Gillmor
wrote:
> On 09/13/2013 08:24 AM, Nicholas Cole wrote:
>
>> I don't think this is sensible. What is the point of a UID that
>> cannot be used by someone else? If the UID is shared with anyone else
>> (even privately), it must have a self-signat
On Sep 13, 2013, at 1:22 AM, Daniel Kahn Gillmor wrote:
> GnuPG is currently not able to create a non-exportable self-sig. If you
> try to do this, it gives an error:
>
> WARNING: the signature will not be marked as non-exportable.
This is by design (hence the warning message), as an unsigned
On 2013-09-13 14:24, Nicholas Cole wrote:
The correct way would be to have keyservers
honour the no-modify flag, or perhaps have some notation on the ID
that prevents uploading to a public keyserver. I myself would favour
the latter approach.
The latter has the same problem as the no-modify f
On Fri, Sep 13, 2013 at 12:22 AM, Daniel Kahn Gillmor
wrote:
> GnuPG is currently not able to create a non-exportable self-sig. If you
> try to do this, it gives an error:
>
> WARNING: the signature will not be marked as non-exportable.
>
> But: some people might never want their keys to be pub
GnuPG is currently not able to create a non-exportable self-sig. If you
try to do this, it gives an error:
WARNING: the signature will not be marked as non-exportable.
But: some people might never want their keys to be published to the public
keyservers, or have some User IDs that they keep lo
10 matches
Mail list logo
