On Wed, 30 Apr 2014 21:36, faramir...@gmail.com said: > I'm thinking, now you are using CAcert certificates, > would it be possible to get a CAcert signature on the gpg signing key > for GnuPG releases? I know the signing key has been said to be "well
If they wish to do that they can certainly do so. I have been an an CAcert assurer for many years. Regarding the release signing key: pub rsa2048/4F25E3B6 2011-01-12 [expires: 2019-12-31] uid Werner Koch (dist sig) sig!3 4F25E3B6 2011-01-12 Werner Koch (dist sig) sig! 1CE0C630 2011-01-12 Werner Koch (dist sig) <dd...@gnu.org> sig! 1E42B367 2011-01-12 Werner Koch <w...@gnupg.org> ^^^^^^^^^ sig! 1CE0C630 2011-01-12 Werner Koch (dist sig) <dd...@gnu.org> Now check my primary key: $ gpg2 --check-sigs --with-colons 1E42B367 \ | awk -F: '$1=="sig" && $2=="!" {print $5}' | sort | uniq | wc -l 75 (plus 28 signatures not checked due to missing keys. Which probably means that I didn't signed their key) I see more than 70 unique signers since 2008. Of course it is also signed by my old key which has 308 still valid signers. That key used to be on rank 2 of that key signing fun list - up until the KDE and Debian guys entered the game ;-) Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users