How to verify revocation?
Kristian Fiskerstrand
kristian.fiskerstrand at sumptuouscapital.com
Wed Feb 19 12:08:27 CET 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On 02/19/2014 11:55 AM, Hauke Laging wrote:
> Am Di 18.02.2014, 23:19:33 schrieb Tadas Slotkus:
>> Hello,
>>
>> I revoked my key and on the public key server it says: "*** KEY
>> REVOKED *** [not verified]" Why does it say that revocation is
>> not verified?
>
> That probably refers to the point that the keyservers don't do
> crypto checks. It means: There is a packet which looks like a key
> revocation but it could be forged. If an OpenPGP application
> downloads the key from the server then it does a signature check.
>
That is a correct interpretation, indeed.
- --
- ----------------------------
Kristian Fiskerstrand
Blog: http://blog.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Public PGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
- ----------------------------
"Expect the best. Prepare for the worst. Capitalize on what comes."
(Zig Ziglar)
-----BEGIN PGP SIGNATURE-----
iQIcBAEBCgAGBQJTBJCrAAoJEPw7F94F4TaglHsP/0Nnbq+PWpL+XD5EpCSZ02sl
J7WCSwYdOqDHc+J50leknZU4/1nbTW9Jj2Ttf24MvIqodqTe5HAZXbPUFDE/Jl8v
OgEwF3gy1QHApektYQZ+HPdgRkHjYJ2aVTIOaz48HdTNmK6mHGL80xo6/Yx8qFQk
OTrBmvwM6APuRjxnewiVZeSV+WnCyki4ePrxpsCzn64wAHRxk4Q7f7A11MhLMlag
nQ5ZhAlfXhcc1A6E10kLMvUPQ+0++vcL8mL9IPlNZuiERtaN7xriNcwYG7kNpJFQ
vmxW3LLGSBrVd6qAFp0d6VErNoCZLhS2tYMmD5KcgZNHLkipBCVEUZgERffgDiOZ
i1fRFYmJBgVt1Y3YOS61g73lA2rpfWbGvUxBrFTk9eCFa3EUwlWfaKto5Zvmj9eH
ZKPyc4+V/naobzFy2N7Mu9gEUL7GTql+PhyOz4Hj5FA12UaglslFPup6oueDp4Co
XIsnZBy03uP05hMajTc5iNfvPHMUP9jUJ+1EmJXfQkCUYebHdfogEy54qJcRubAX
jd0e6ZjLz28NtzCMgrw6pargXYOUO2nt1PGKsmMwo20v/KimAjI6Y0o9fiDHqyPd
EC151REDeqFGBGR+gdA+ZrRJlduf+Pr/qspzPZs/8prj+4Ku9OrGzL3iFk+5j8Bc
MueSFVIsuZ1vdsc69RF6
=f8af
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list