-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Thursday 14 August 2014 at 10:57:51 AM, in
, Peter Lebbing wrote:
> On 13/08/14 23:09, MFPA wrote:
>> And, as you say, she would not be able to re-use signatures she
>> collected on her "old" UID2 on her "new" one.
> Actually, interestingl
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Thursday 14 August 2014 at 10:43:28 AM, in
, Peter Lebbing wrote:
> On 13/08/14 23:33, MFPA wrote:
>> Won't a simple "setpref" do the trick?
> No, that does not appear to be the case. I tried it; it
> just falls through without doing anyth
On Aug 14, 2014, at 5:46 AM, Peter Lebbing wrote:
> On 13/08/14 23:51, David Shaw wrote:
>> Try this:
>>
>> gpg2 --expert -u (thekey) --edit-key (thekey)
>
> Ah! I never thought of trying good old --expert. Thanks!
It may be appropriate to not need --expert for this specific case of re-signin
On 13/08/14 23:09, MFPA wrote:
> And, as you say, she would not be able to re-use signatures she
> collected on her "old" UID2 on her "new" one.
Actually, interestingly, you can. There is no timestamp or anything in a
UID; two UIDs with identical text are completely identical[1]. That
means that
On 13/08/14 23:51, David Shaw wrote:
> Try this:
>
> gpg2 --expert -u (thekey) --edit-key (thekey)
Ah! I never thought of trying good old --expert. Thanks!
Peter.
--
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My
On 13/08/14 23:33, MFPA wrote:
> Won't a simple "setpref" do the trick?
No, that does not appear to be the case. I tried it; it just falls
through without doing anything.
I think this is a feature: you could accidentally unrevoke a revoked UID
with setpref otherwise.
HTH,
Peter.
--
I use the
On Aug 13, 2014, at 8:22 AM, Peter Lebbing wrote:
> It is precisely as you said, GnuPG does allow reinstigating a revoked
> UID. However, there is a slight hitch in the UI that means you can't do
> it completely straight-forwardly. You need to delete the offending UID
> before re-adding it, but o
Am Mi 13.08.2014, 22:43:41 schrieb MFPA:
> > Subkeys and third party signatures are not related
> > (today – one more problem).
>
> Why is that a problem?
Because of that OpenPGP (at least in a useful form) is not compatible
with (probably not only) German signature law. I know that this will b
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Wednesday 13 August 2014 at 11:30:00 AM, in
, Hauke Laging wrote:
> i.e. the same string is the same UID and cannot be
> created twice in a certificate.
Interesting. When I tested, GnuPG allowed me to add another UID with
exactly the same
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Wednesday 13 August 2014 at 1:45:20 PM, in
, Peter Lebbing wrote:
> On 13/08/14 14:22, Peter Lebbing wrote:
>> Okay, the UI doesn't let us do it that easily. Delete that old one.
> Alternatively, delete only the revocation signature and
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Wednesday 13 August 2014 at 9:44:59 AM, in
, pze...@hushmail.com
wrote:
> she issues adduid to add "Alice ",
> her company mailing address. After some time, she
> leaves the company, invalidating her email address.
> Consequently, she revok
On 13/08/14 14:54, pze...@hushmail.com wrote:
> Could you now, from this one snapshot, tell which UIDs and subkeys I
> added and then deleted again?
Ah, right. It depends a bit. Especially self-signatures, which include
key preferences, do normally accumulate. But if you use export-minimal
or the
Am Mi 13.08.2014, 14:54:40 schrieb pze...@hushmail.com:
> Say I add
> some UIDs and some subordinate keys, and then remove a subset of
> those. Only after having done all this, I upload this key's public
> info, for the first time, to a keyserver and tell you about it. Could
> you now, from this o
Hi, and thanks again for your answer.
I have the feeling I may have formulated my question badly.
I do know that data that has been out in the open cannot be made forgotten.
What I wanted to ask was this, basically:
Assume I generate a completely new gpg key and play around with it. Say I add
so
On 13/08/14 14:22, Peter Lebbing wrote:
> Okay, the UI doesn't let us do it that easily. Delete that old one.
Alternatively, delete only the revocation signature and the
self-signature using "delsig" and resign using "sign". That way, you
keep certifications in your local copy. The "delsig" interf
On 13/08/14 13:30, pze...@hushmail.com wrote:
> How much history is saved in a gpg key?
Pretty much everything. You can edit what you give others to your
heart's content, but old data will still linger in a lot of places and
can recombine with your new data. Keyservers in particular never throw
an
On 13/08/14 12:37, Hauke Laging wrote:
> Give it a try...
OK.
$ gpg2 --homedir gpgtest -k DCDFDFA4
pub 1024R/DCDFDFA4 2012-03-17 [expires: 2014-08-15]
uid [ full ] Test Teststra
uid [ full ] Test Teststra (Koning van Wezel)
sub 1024R/77A3395A 2012-03-17
Revoking the work UI
On 13/08/14 12:30, Hauke Laging wrote:
> the same string is the same UID The signature is newer than the
> revocation thus the UID is valid again. Unfortunately you cannot rely
> on this as the RfC does not enforce using the newest signature but
> GnuPG behaves this way.
The RFC says very little o
Thanks for your helpful answers, Hauke and Peter!
I have a followup question, if you don't mind:
How much history is saved in a gpg key?
Say, for example, I have a gpg key with uid1 associated, and I publish that.
Then, I add uid2, but before handing out my updated gpg key to anybody, I
decide
Am Mi 13.08.2014, 12:23:24 schrieb Peter Lebbing:
> > Can she add a new UID of the same name "Alice " to
> > her gpg key again?
>
> I'm pretty sure that, yes, you can.
Give it a try...
> practice, you'll usually see that it will be encrypted to the last
> created non-expired key.
Not the last
Am Mi 13.08.2014, 11:57:12 schrieb pze...@hushmail.com:
> updated public key to everyone she's in contact with. Then, for some
> reason, Alice joins aforementioned company again, re-gaining control
> of her mail address u...@company.com. Can she add a new UID of the
> same name "Alice " to her gpg
Hello,
> Can she add a new UID of the same name "Alice " to
> her gpg key again?
I'm pretty sure that, yes, you can.
> In another scenario, Alice not only has a master key, but also
> subordinate keys, say for her notebook and mobile phone. First, can
> she say that the mobile phone should be
Hello,
I'm new to GPG, and after having read the documentation, I still have a few
questions:
Suppose Alice generates a new master signing key, and along with it the UID
"Alice ". Then, she issues adduid to add "Alice
", her company mailing address. After some time, she leaves
the company, in
Hello,
I'm new to GPG, and after having read the documentation, I still have a few
questions:
Suppose Alice generates a new master signing key, and along with it the UID
"Alice ". Then, she issues adduid to add "Alice
", her company mailing address. After some time, she leaves
the company, in
24 matches
Mail list logo
