On Sun, Feb 03, 2019 at 02:24:38AM -0500, Ineiev wrote: > > I thought the same, but it turned out that I'm just not very sociable. > for example, key 3CE464558A84FDC69DB40CFB090B11993D9AEBB5 exports > to a 84k long file because it has 125 signatures from other people; > with gpg -a --export --export-options=export-minimal, it's just 5k long. > > Now, keyservers do store some keys with many fancy signatures, like [0], > but generally signatures are useful, and we may expect that people > don't keep a lot of spam signatures on their own keys in their keyrings. > > [0] > https://pgp.surfnet.nl/pks/lookup?op=vindex&fingerprint=on&search=0xF2AD85AC1E42B367
So now a harder question: what should we do? I see three basic possibilities: (0) drop gpg_key completely; (1) recommend gpg --armor --export --export-options=export-minimal; (2) convert gpg_key to meduimtext. What do people think?
signature.asc
Description: Digital signature
