On Tue, Jul 9, 2019 at 2:10 PM Werner Koch wrote:
> The problem I see is that the keyservers need to check the validity of
> the 0x50 signature first. Only this will allow them to distribute only
> key-signatures which have veen approved buy the key owner.
Correct, a keyserver would need to val
Hmmm, ok.
Yes, I am considering ways of letting a user "whitelist" signatures on
their public key, and using the Signature Target subpacket[1] seemed
like a way to do that.
However, if gpg doesn't support a way of adding that subpacket, then
creating easy-to-copy-and-paste commands for users to u
Howdy,
Is there a way to create a "Third-Party Confirmation signature"[1]
using the gnupg command line interface?
[1]: https://tools.ietf.org/html/rfc4880#section-5.2.1 (see "0x50:
Third-Party Confirmation signature.")
Thanks,
Daniel
___
Gnupg-users m
