Package: signing-party
Version: 1.1.4-1
Severity: normal

Caff ignores all keys except the first one specified in the keyid field.
For example, with the attached caffrc for details, only E95EDDC9 was
used to sign keys.

An example run goes as follows:

[INFO] Importing key 7BD15207E95EDDC9 from your normal GnuPGHome.
[INFO] Importing key 8F7BF8FC4A11C97A from your normal GnuPGHome.
[INFO] fetching keys, this will take a while...
[INFO] Sign the following keys according to your policy, then exit gpg with 
'save' after signing each key
gpg --homedir=/home/ryan/.caff/gnupghome --secret-keyring 
/home/ryan/.gnupg/secring.gpg --no-auto-check-trustdb --trust-model=always 
--edit F43419496DC7B967C36C20FA07B48452768D3824 sign
gpg (GnuPG) 1.4.12; Copyright (C) 2012 Free Software Foundation, Inc.
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.

(notice, no multiple -u are passed).

-- $HOME/.caffrc

# .caffrc -- vim:ft=perl:
# This file is in perl(1) format - see caff(1) for details.

$CONFIG{'owner'} = 'Ryan Kavanagh';
$CONFIG{'email'} = '[email protected]';
#$CONFIG{'reply-to'} = '[email protected]';

# You can get your long keyid from
#   gpg --with-colons --list-key <yourkeyid|name|emailaddress..>
#
# If you have a v4 key, it will simply be the last 16 digits of
# your fingerprint.
#
# Example:
#   $CONFIG{'keyid'} = [ qw{FEDCBA9876543210} ];
#  or, if you have more than one key:
#   $CONFIG{'keyid'} = [ qw{0123456789ABCDEF 89ABCDEF76543210} ];
$CONFIG{'keyid'} = [ qw{7BD15207E95EDDC9 8F7BF8FC4A11C97A} ];

# Select this/these keys to sign with
#$CONFIG{'local-user'} = [ qw{7BD15207E95EDDC9 8F7BF8FC4A11C97A} ];

# Additionally encrypt messages for these keyids
#$CONFIG{'also-encrypt-to'} = [ qw{7BD15207E95EDDC9 8F7BF8FC4A11C97A} ];

# Mail template to use for the encrypted part
#$CONFIG{'mail-template'} = << 'EOM';
#Hi,
#
#please find attached the user id{(scalar @uids >= 2 ? 's' : '')}
#{foreach $uid (@uids) {
#    $OUT .= "\t".$uid."\n";
#};}of your key {$key} signed by me.
#
#If you have multiple user ids, I sent the signature for each user id
#separately to that user id's associated email address. You can import
#the signatures by running each through `gpg --import`.
#
#Note that I did not upload your key to any keyservers. If you want this
#new signature to be available to others, please upload it yourself.
#With GnuPG this can be done using
#       gpg --keyserver pool.sks-keyservers.net --send-key {$key}
#
#If you have any questions, don't hesitate to ask.
#
#Regards,
#{$owner}
#EOM


-- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to en_CA.UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages signing-party depends on:
ii  gnupg                      1.4.12-6
ii  libc6                      2.13-36
ii  libclass-methodmaker-perl  2.18-1+b1
ii  libgnupg-interface-perl    0.45-1
ii  libmailtools-perl          2.09-1
ii  libmime-tools-perl         5.503-1
ii  libterm-readkey-perl       2.30-4+b2
ii  libtext-template-perl      1.45-2
ii  perl                       5.14.2-15
ii  qprint                     1.0.dfsg.2-2

Versions of packages signing-party recommends:
ii  libgd-gd2-noxpm-perl              1:2.46-2+b1
ii  libpaper-utils                    1.1.24+nmu2
ii  libtext-iconv-perl                1.7-5
ii  msmtp-mta [mail-transport-agent]  1.4.29-1
ii  recode                            3.6-20
ii  whiptail                          0.52.14-10

Versions of packages signing-party suggests:
ii  imagemagick                8:6.7.7.10-5
ii  mutt                       1.5.21-6.2
ii  texlive-latex-recommended  2012.20120611-5
pn  wipe                       <none>

-- no debconf information

Attachment: signature.asc
Description: Digital signature

Reply via email to