Redundant certificate in keyring
I don't know how this came to pass, but: PS C:\Users\Robert J. Hansen\Documents> gpg --list-keys 12d9199d7b3b7495 pub dsa2048/12D9199D7B3B7495 2017-07-26 [SCA] 1BE9AAB825A55E48195F1A0312D9199D7B3B7495 uid [ unknown] Tobias Schultz sub elg2048/B57E2F27C75F8668 2017-07-26 [E] pub dsa2048/12D9199D7B3B7495 2017-07-26 [SCA] 1BE9AAB825A55E48195F1A0312D9199D7B3B7495 uid [ unknown] Tobias Schultz sub elg2048/B57E2F27C75F8668 2017-07-26 [E] (Windows 10, GnuPG 2.2.0.) Somehow, this cert got introduced into my keyring twice. I don't know how and I don't really know when; I only found out about it after a script I run every month broke horribly, since it expects a given cert to only appear once in the keyring. I don't ever edit my keybox file directly. Deleting that cert deleted only one of the two certs, too. There appears to be a bug in the keybox code; unfortunately, I'm not able to give much in the way of details. :( ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: 1024 key with large sub key
On Mon, 2 Oct 2017 21:04, r...@sixdemonbag.org said: > I'd like to open a discussion about removing this option. Please not again. That whole largeRSA key mess was a compromise to silence a very few individuals who had, well, interesting ideas on required key sizes. Sometimes it is easier to add an option than to spend hours on discussing their non-need. It is kind of similar to Camellia or Brainpool - I don't see a reason for those alsorithms but if they are needed for policy or political reasons, let's add them and forget about it. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. pgp4J6PDogqVj.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: 1024 key with large sub key
On Sun, 1 Oct 2017 19:18, tim@gmx.net said: > this 1024 key has a 8192 sub key what is te meaning of such a large sub key? It means that a user of that key has a way to identify that subkey by means outside of gpg. That user and the holder of that key also have verified every bit of the source of their OS, including compiler and compiler used to build the compiler, as well as the hardware, scrutinized the Intel ME, fixed all bugs in gpg, live in tempest shielded rooms several floors below the ground, and keep rubber hoses locked away. SCNR. Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. pgp1Dndu3Ab6m.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: 1024 key with large sub key
> That whole largeRSA key mess was a compromise to silence a very few > individuals who had, well, interesting ideas on required key sizes. As always, the needs of real users are paramount. If there are real users who will be impacted, that's all the justification needed. Consider my request withdrawn. :) signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: 1024 key with large sub key
Il 03/10/2017 12:40, Werner Koch ha scritto: [...] > scrutinized the Intel ME, fixed all bugs in gpg, live in tempest At least they should have shared the bugfixes! :) BYtE, Diego ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
