-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Thursday 14 August 2014 at 10:57:51 AM, in
, Peter Lebbing wrote:
> On 13/08/14 23:09, MFPA wrote:
>> And, as you say, she would not be able to re-use signatures she
>> collected on her "old" UID2 on her "new" one.
> Actually, interestingl
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Thursday 14 August 2014 at 10:43:28 AM, in
, Peter Lebbing wrote:
> On 13/08/14 23:33, MFPA wrote:
>> Won't a simple "setpref" do the trick?
> No, that does not appear to be the case. I tried it; it
> just falls through without doing anyth
On Aug 14, 2014, at 5:46 AM, Peter Lebbing wrote:
> On 13/08/14 23:51, David Shaw wrote:
>> Try this:
>>
>> gpg2 --expert -u (thekey) --edit-key (thekey)
>
> Ah! I never thought of trying good old --expert. Thanks!
It may be appropriate to not need --expert for this specific case of re-signin
On 13/08/14 23:09, MFPA wrote:
> And, as you say, she would not be able to re-use signatures she
> collected on her "old" UID2 on her "new" one.
Actually, interestingly, you can. There is no timestamp or anything in a
UID; two UIDs with identical text are completely identical[1]. That
means that
On 13/08/14 23:51, David Shaw wrote:
> Try this:
>
> gpg2 --expert -u (thekey) --edit-key (thekey)
Ah! I never thought of trying good old --expert. Thanks!
Peter.
--
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My
On 13/08/14 23:33, MFPA wrote:
> Won't a simple "setpref" do the trick?
No, that does not appear to be the case. I tried it; it just falls
through without doing anything.
I think this is a feature: you could accidentally unrevoke a revoked UID
with setpref otherwise.
HTH,
Peter.
--
I use the
On Aug 13, 2014, at 8:22 AM, Peter Lebbing wrote:
> It is precisely as you said, GnuPG does allow reinstigating a revoked
> UID. However, there is a slight hitch in the UI that means you can't do
> it completely straight-forwardly. You need to delete the offending UID
> before re-adding it, but o
Am Mi 13.08.2014, 22:43:41 schrieb MFPA:
> > Subkeys and third party signatures are not related
> > (today – one more problem).
>
> Why is that a problem?
Because of that OpenPGP (at least in a useful form) is not compatible
with (probably not only) German signature law. I know that this will b
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Wednesday 13 August 2014 at 11:30:00 AM, in
, Hauke Laging wrote:
> i.e. the same string is the same UID and cannot be
> created twice in a certificate.
Interesting. When I tested, GnuPG allowed me to add another UID with
exactly the same
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Wednesday 13 August 2014 at 1:45:20 PM, in
, Peter Lebbing wrote:
> On 13/08/14 14:22, Peter Lebbing wrote:
>> Okay, the UI doesn't let us do it that easily. Delete that old one.
> Alternatively, delete only the revocation signature and
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Wednesday 13 August 2014 at 9:44:59 AM, in
, pze...@hushmail.com
wrote:
> she issues adduid to add "Alice ",
> her company mailing address. After some time, she
> leaves the company, invalidating her email address.
> Consequently, she revok
On 13/08/14 14:54, pze...@hushmail.com wrote:
> Could you now, from this one snapshot, tell which UIDs and subkeys I
> added and then deleted again?
Ah, right. It depends a bit. Especially self-signatures, which include
key preferences, do normally accumulate. But if you use export-minimal
or the
Am Mi 13.08.2014, 14:54:40 schrieb pze...@hushmail.com:
> Say I add
> some UIDs and some subordinate keys, and then remove a subset of
> those. Only after having done all this, I upload this key's public
> info, for the first time, to a keyserver and tell you about it. Could
> you now, from this o
Hi, and thanks again for your answer.
I have the feeling I may have formulated my question badly.
I do know that data that has been out in the open cannot be made forgotten.
What I wanted to ask was this, basically:
Assume I generate a completely new gpg key and play around with it. Say I add
so
On 13/08/14 14:22, Peter Lebbing wrote:
> Okay, the UI doesn't let us do it that easily. Delete that old one.
Alternatively, delete only the revocation signature and the
self-signature using "delsig" and resign using "sign". That way, you
keep certifications in your local copy. The "delsig" interf
On 13/08/14 13:30, pze...@hushmail.com wrote:
> How much history is saved in a gpg key?
Pretty much everything. You can edit what you give others to your
heart's content, but old data will still linger in a lot of places and
can recombine with your new data. Keyservers in particular never throw
an
On 13/08/14 12:37, Hauke Laging wrote:
> Give it a try...
OK.
$ gpg2 --homedir gpgtest -k DCDFDFA4
pub 1024R/DCDFDFA4 2012-03-17 [expires: 2014-08-15]
uid [ full ] Test Teststra
uid [ full ] Test Teststra (Koning van Wezel)
sub 1024R/77A3395A 2012-03-17
Revoking the work UI
On 13/08/14 12:30, Hauke Laging wrote:
> the same string is the same UID The signature is newer than the
> revocation thus the UID is valid again. Unfortunately you cannot rely
> on this as the RfC does not enforce using the newest signature but
> GnuPG behaves this way.
The RFC says very little o
Thanks for your helpful answers, Hauke and Peter!
I have a followup question, if you don't mind:
How much history is saved in a gpg key?
Say, for example, I have a gpg key with uid1 associated, and I publish that.
Then, I add uid2, but before handing out my updated gpg key to anybody, I
decide
Am Mi 13.08.2014, 12:23:24 schrieb Peter Lebbing:
> > Can she add a new UID of the same name "Alice " to
> > her gpg key again?
>
> I'm pretty sure that, yes, you can.
Give it a try...
> practice, you'll usually see that it will be encrypted to the last
> created non-expired key.
Not the last
Am Mi 13.08.2014, 11:57:12 schrieb pze...@hushmail.com:
> updated public key to everyone she's in contact with. Then, for some
> reason, Alice joins aforementioned company again, re-gaining control
> of her mail address u...@company.com. Can she add a new UID of the
> same name "Alice " to her gpg
Hello,
> Can she add a new UID of the same name "Alice " to
> her gpg key again?
I'm pretty sure that, yes, you can.
> In another scenario, Alice not only has a master key, but also
> subordinate keys, say for her notebook and mobile phone. First, can
> she say that the mobile phone should be
22 matches
Mail list logo
