-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Alex Mauer wrote: > Is there any reason that the keyserver needs to continue to redistribute > expired, revoked, or otherwise invalid (e.g. superseded) signatures? > > I can't think of any.
I would think that it's important for keyservers to widely distribute the revocation certificates of revoked signatures. If the keyservers simply omitted revoked signatures from search results, how would a client know that this uid was revoked? Stripping data that isn't particularly useful is a job better left to the client. Word -- PSM -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFSlp7ei6R+3iF2vwRAm8bAJ0U4sYSBNg16mrkUt225GsKkFwhnACfYq7j 9Xt8sE66OrN4gZpxCmN1LAU= =JYLy -----END PGP SIGNATURE----- _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users