On Sun, Sep 17, 2000 at 09:36:41PM +0200, Christian Surchi wrote: > I'm processing my first NM and I'm in identification process. He is Tom > Cato Amundsen <[EMAIL PROTECTED]>. He has a gpg key signed by Per > Lundberg <[EMAIL PROTECTED]>, but Per signed Tom's key with his new gpg > key, and this key is not in keyring yet. I could only get that key from > another keyserver, but it has neither a d.o id. How should I behave? OK, so we have a few keys here. Tom New Per Old Per Old Per is in the Debian keyring New Per signed Tom's key The problem. Is New Per really Old Per?
Email Per, encrypt the email in his old key. In that email send his Tom's signed key and possibly some random phrase. If Per can decrypt your message and reply back saying "yes i signed Tom's key" in a message signed by old Per's key then I'd say you're done. That's what I'd do. You've then closed the loop with old Per, which is what you want to do. Really, new Per could sign old Per's key as well. > Should I wait for that key in keyring or can I skip this step and work > with Tom on following steps? You can skip this step. You do not have to do them in order. However you cannot recommend an applicant until the ID, P&P and T&S stages have been passed. - Craig -- Craig Small VK2XLZ GnuPG:1C1B D893 1418 2AF4 45EE 95CB C76C E5AC 12CA DFA5 Eye-Net Consulting http://www.eye-net.com.au/ <[EMAIL PROTECTED]> MIEEE <[EMAIL PROTECTED]> Debian developer <[EMAIL PROTECTED]>
