Hi, On Thu, 30 Dec 2021 at 17:05:39 -0500, Aaron M. Ucko wrote: > caff has historically defaulted to looking keys up on > pool.sks-keyservers.net
$CONFIG{'keyserver'} is deprecated since 2.3-1, and the default is to
use the keyserver in ~/.caff/gnupghome/gpg.conf, falling back to the
option value defined in ~/.gnupg/gpg.conf, falling back to the
dirmngr(8) default (hkps://keys.openpgp.org by — Debian — default).
Seems I forgot to update caffrc.sample :-), but since 2.3-1 caff doesn't
hardcode its own keyserver.
> and recommending that signees upload their
> keys there. However, per https://sks-keyservers.net/, that pool is no
> longer in service.
I'm not sure what's the best substitute at the moment as hkps://keys.openpgp.org
doesn't send third-party signatures. IIRC GnuPG upstream waits for
a sane Hockeypuck-based pool to grow before switching the default, so it
might make sense for caff to wait too. (https://keyserver.ubuntu.com/
is an example of an Hockeypuck-based key server, but of course it's
centralized and not a pool.)
--
Guilhem.
signature.asc
Description: PGP signature
