-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Alex Mauer wrote:
> Is there any reason that the keyserver needs to continue to redistribute
> expired, revoked, or otherwise invalid (e.g. superseded) signatures?
> 
> I can't think of any.

I would think that it's important for keyservers to widely distribute
the revocation certificates of revoked signatures.  If the keyservers
simply omitted revoked signatures from search results, how would a
client know that this uid was revoked?  Stripping data that isn't
particularly useful is a job better left to the client.

Word -- PSM
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFSlp7ei6R+3iF2vwRAm8bAJ0U4sYSBNg16mrkUt225GsKkFwhnACfYq7j
9Xt8sE66OrN4gZpxCmN1LAU=
=JYLy
-----END PGP SIGNATURE-----

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Reply via email to