using subkey signatures

Adrian 'Dagurashibanipal' von Bidder avbidder at fortytwo.ch
Mon Sep 2 16:48:02 CEST 2002


On Mon, 2002-09-02 at 15:18, David Shaw wrote:
> On Mon, Sep 02, 2002 at 02:44:53PM +0200, Adrian 'Dagurashibanipal' von Bidder wrote:
> > Yo!
> > 
> > It just came to my attention (thanks Matthew) that gpg can't
> > auto-retrieve a key if the signature was made by a subkey, since the
> > main keyid is not contained in the signature package at all.
> 
> This is a (HKP) keyserver limitation more than a GnuPG limitation.
> The LDAP keyservers do allow fetching by subkey ID.

Ok good to know. Is anything planned on the pks side? Or on the cks side
(it doesn't index subkey ids atm, it seems)? Or on the keyserver.net
side (doesn't neither, just now)? Just curious.

> > Hmmm... I understand that the proposed way to define a local notation is
> > <name>@<site>=..., so the probability of namespace conflict is
> > minimized. gpg won't let me do this. (1.0.7, that is.)
> 
> 1.2 will.

Ok, thanks.

cheers
-- vbi

-- 
secure email with gpg                        http://fortytwo.ch/gpg

NOTICE: keyserver.kjsl.com is known to carry a valid copy of my key
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 440 bytes
Desc: This is a digitally signed message part
Url : /pipermail/attachments/20020902/fbc8a1ef/attachment.bin


More information about the Gnupg-devel mailing list