Re: Help setting gpgsm to do LDAP lookup

2020-05-17 Thread Werner Koch via Gnupg-users
On Sat, 16 May 2020 23:24, John Scott said: > Looking up recipients with both dirmngr-client and > gpgsm --verbose --list-external-keys [recipient] > are fruitless whether I drop the ads\ from my username or not. I've bumped > the > ldaptimeout to 25. Still both commands finish instantaneous

Re: Comparison of RSA vs elliptical keys

2020-05-17 Thread Werner Koch via Gnupg-users
On Sun, 17 May 2020 04:33, Ángel said: > In both cases, most of the signature space is taken by a hashed > subpacket of type 38. This value is not assigned, but looking at You are using --include-key-block; this is intended to be used by MUAs to send the encryption key along with a signature to a

Re: keys require a user-id

2020-05-17 Thread Werner Koch via Gnupg-users
On Sun, 17 May 2020 10:48, Vincent Breitmoser said: > 1. Without consent, we don't distribute email addresses. And by that changing the distributed system of keyservers into a centralized key database like PGP tried this with their Universal Server. Which unavoidable will change OpenPGP to a cen

Re: keys require a user-id

2020-05-17 Thread Robert J. Hansen
> I'm just curious as to what this "GNU" way is? I assume you would > just a non identifiable email address and then either leave your > name blank, incomplete, or just plain incorrect. GNU is a project by the Free Software Foundation. They're very focused on what they call "free software", wher

Re: Comparison of RSA vs elliptical keys

2020-05-17 Thread Mark
Thanks to all the people that chimed in on my question. I was trying to get an idea how they compared. It was (for me) even more confusing with the 25519 choices as I didn't know the size of those keys until someone explained them better. On 5/11/2020 6:46 PM, Pete Stephenson via Gnupg-users wrote

Re: Best Keyserver

2020-05-17 Thread Mark
Thanks I will update it and make sure both Kleopatra and Enigmail are using the same one so they are "on the same page" On 5/15/2020 11:55 PM, Michał Górny wrote: > On Fri, 2020-05-15 at 16:52 -0700, Mark wrote: >> I know this may be a subjective question but what is the best keyserver >> to use?

Re: keys require a user-id

2020-05-17 Thread Mark
I'm just curious as to what this "GNU" way is? I assume you would just a non identifiable email address and then either leave your name blank, incomplete, or just plain incorrect. Is there another way I am missing? Thanks On 5/16/2020 8:56 AM, Robert J. Hansen wrote: >> So, when you like to comm

Re: Comparison of RSA vs elliptical keys

2020-05-17 Thread Stefan Claas
Ángel wrote: > On 2020-05-16 at 22:49 +0200, Stefan Claas wrote: > > out of curiosity, you signed the reply with two sub keys, but > > what makes the signature so large, the hash algo used? I must > > admit I have never seen such a large signature before. > > It is quite large, indeed. This Radi

Re: keys require a user-id

2020-05-17 Thread Vincent Breitmoser via Gnupg-users
Hey folks, this thread touches on userid-less keys, and keyservers. I agree with Peter and Rob's points that userid-less keys are questionable for use as-is. OpenPGP transfers information in the self-signatures of user ids. If we use keys without any known UID, we might miss out on e.g. expirat

Re: keys require a user-id

2020-05-17 Thread Vincent Breitmoser via Gnupg-users
> Werner sits as secretary of the (largely dormant) group that guides > OpenPGP development, but there are a lot of non-GnuPG people who are > deeply involved in giving feedback on proposed changes. He's the > secretary, not the dictator. Not everyone agrees. https://mailarchive.ietf.org/arch/