keys require a user-id
Wiktor Kwapisiewicz
wiktor at metacode.biz
Fri May 15 15:34:31 CEST 2020
On 15.05.2020 15:21, Andrew Gallagher wrote:
> Ownertrust is per-key, but validity is per-UID.
Andrew there are two validity values:
$ gpg --edit-key andrewg
pub rsa4096/FB73E21AF1163937
created: 2013-07-02 expires: 2021-01-07 usage: SCA
--> trust: unknown validity: marginal <--- here (A)
sub rsa4096/6B09069314549D4B
created: 2013-07-02 expires: 2021-01-07 usage: E
sub rsa4096/5C1EC404D5906629
created: 2015-04-26 expires: 2021-01-07 usage: S
sub rsa4096/85FDF561DA8C0C46
created: 2015-04-26 expires: 2021-01-07 usage: A
[marginal] (1). Andrew Gallagher <andrewg at andrewg.com> <-- and here (B)
[marginal] (2) Andrew Gallagher <andrewg at llagher.net>
Value from (A) is calculated from User IDs (B).
When you sign someone else User ID it's not your User ID that is doing
the signing it it's your key that's why you need a key validity that's
separated from User ID (key validity is calculated from User ID validity).
Kind regards,
Wiktor
--
https://metacode.biz/@wiktor
More information about the Gnupg-users
mailing list