Size of client key jumped from 2KB to 25KB
Olav Seyfarth
olav at enigmail.net
Mon Mar 10 17:31:15 CET 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Hi Steve,
maybe you just want to clean sigs using one of the import/export options.
Olav
___
- From /man gpg/
*--import-options parameters*
This is a space or comma delimited string that gives options for importing
keys. Options can be prepended with a `no-' to give the opposite meaning.
The options are:
import-local-sigs
Allow importing key signatures marked as "local". This is not generally
useful unless a shared keyring scheme is being used. Defaults to no.
repair-pks-subkey-bug
During import, attempt to repair the damage caused by the PKS keyserver
bug (pre v. 0.9.6) that mangles keys with multiple subkeys. Note that
this cannot completely repair the damaged key as some crucial data is
removed by the keyserver, but it does at least give you back one subkey.
Defaults to no for regular --import and to yes for keyserver --recv-keys.
merge-only
During import, allow key updates to existing keys, but do not allow any
new keys to be imported. Defaults to no.
import-clean
After import, compact (remove all signatures except the self-signature)
any user IDs from the new key that are not usable. Then, remove any
signatures from the new key that are not usable. This includes signatures
that were issued by keys that are not present on the keyring. This option
is the same as running the --edit-key command "clean" after import.
Defaults to no.
import-minimal
Import the smallest key possible. This removes all signatures except the
most recent self-signature on each user ID. This option is the same as
running the --edit-key command "minimize" after import. Defaults to no.
*--export-options parameters*
This is a space or comma delimited string that gives options for exporting
keys. Options can be prepended with a `no-' to give the opposite meaning.
The options are:
export-local-sigs
Allow exporting key signatures marked as "local". This is not generally
useful unless a shared keyring scheme is being used. Defaults to no.
export-attributes
Include attribute user IDs (photo IDs) while exporting. This is useful to
export keys if they are going to be used by an OpenPGP program that does
not accept attribute user IDs. Defaults to yes.
export-sensitive-revkeys
Include designated revoker information that was marked as "sensitive".
Defaults to no.
export-reset-subkey-passwd
When using the --export-secret-subkeys command, this option resets the
passphrases for all exported subkeys to empty. This is useful when the
exported subkey is to be used on an unattended machine where a passphrase
doesn't necessarily make sense. Defaults to no.
export-clean
Compact (remove all signatures from) user IDs on the key being exported
if the user IDs are not usable. Also, do not export any signatures that
are not usable. This includes signatures that were issued by keys that
are not present on the keyring. This option is the same as running the
--edit-key command "clean" before export except that the local copy of
the key is not modified. Defaults to no.
export-minimal
Export the smallest key possible. This removes all signatures except the
most recent self-signature on each user ID. This option is the same as
running the --edit-key command "minimize" before export except that the
local copy of the key is not modified. Defaults to no.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)
Comment: Dies ist eine elektronische Signatur - http://www.enigmail.net/
iQGcBAEBAwAGBQJTHejNAAoJEKGX32tq4e9WRPUL/2X97yjHHcA4//Mm9BOqmkLz
B5T6/baDVzVxrNVSVPtrCE3wOqjrtVEJ1Pv+RET3v3X0pK3ncIZm1GM8pz1oYQrk
4CX6zIN3NtXXayNOAai9AVx/Rtsk2+Rs7RHqmqjq1kvx+wk6AvFnoJ7EposwYnbY
9hHNjbF7S5zaLvPrIhVO+TZTxVFWASe3feeF6ikdza547TgR5RibNPvkglM1VyZE
NjEcnpNxk0hMCp9VBkvuioDxJJySbzxYQmnANDkCw8yJ0EfWQ2vJqRka7Nn5qB6M
jtY364RVtAxJoc+wMDbXqkaIs+q5ltAyMO/geBZSNZc2m+JpHmDFdM8f1FxEnUdk
jY5lE6GX6/W1WqwQ7AXE2mpbDB9/S3nKd8Y6v+09lWG1CTjyVJYjEPl80SYMv0ET
Hxt/37/bs6PW1GE+189Q0qMOh5uy9L/jJMJzQXTjqBFMF7XcpFCri1sgmVIIj1vD
gU6nPf8KqW0zuMDiOUWjkVdkzSLzhulUkmNF2Umi0Q==
=FsQP
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list