Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. GnuPG>
  3. users
RFE, handling invalid/revoked uids
jordi at sindominio
Jul 27, 2000, 8:03 PM
Post #1 of 4 (484 views)
Permalink
Some weeks ago I asked about this, and after talking to some other people,
they suggested to raise the issue again.

Gnupg should handle revocated sigs. One of the uids in my key belongs to a
host that has died.

L. Sassaman answered to my previous question:
> OpenPGP has a solution to this: You revoke the self-signature on the
> key. Then, and OpenPGP compliant program would report that UID as being no
> longer valid.
>
> Werner, I don't think GnuPG does this at present... can that be changed?

So, anyone thinks gnupg can be taught to ignore non self-signed uids or
those where the sig has been revoked? I hope someone can come with a
solution to this problem.

Thank you for the effort,

Jordi

--
Jordi Mallach Pérez || jordi@pusa.informat.uv.es || Rediscovering Freedom,
aka Oskuro in || jordi@sindominio.net || Using Debian GNU/Linux
Reinos de Leyenda || jordi@debian.org || http://debian.org

http://sindominio.net GnuPG public information: pub 1024D/917A225E
telnet pusa.uv.es 23 73ED 4244 FD43 5886 20AC 2644 2584 94BA 917A 225E
Re: RFE, handling invalid/revoked uids [ In reply to ]
wk at gnupg
Jul 28, 2000, 1:51 AM
Post #2 of 4 (475 views)
Permalink
On Fri, 28 Jul 2000, Jordi Mallach wrote:

> Gnupg should handle revocated sigs. One of the uids in my key belongs to a
> host that has died.

The latest CVS displays a [revoked] or [invalid] before the user ID.
The current stable version should not take revoked user IDs into
account when checking the trust or encrypting to it. I am not sure
about the last point.

The whole trust stuff is a big mess and I will address this in the
development version, spending more time on the current code base is
not worth the time.

Werner


--
Werner Koch OpenPGP key 621CC013
OpenIT GmbH http://www.OpenIT.de
Re: RFE, handling invalid/revoked uids [ In reply to ]
jordi at sindominio
Jul 28, 2000, 9:37 AM
Post #3 of 4 (477 views)
Permalink
On Fri, Jul 28, 2000 at 10:51:08AM +0200, Werner Koch wrote:
> The latest CVS displays a [revoked] or [invalid] before the user ID.

Oh, good to know. I'm using the latest stable, so sorry if I asked for
something that is already supported.

> The current stable version should not take revoked user IDs into
> account when checking the trust or encrypting to it. I am not sure
> about the last point.

Haven't checked this either.

> The whole trust stuff is a big mess and I will address this in the
> development version, spending more time on the current code base is
> not worth the time.

Will there be development releases, or we need to get these directly from
CVS?

Thank you again,

Jordi

--
Jordi Mallach Pérez || jordi@pusa.informat.uv.es || Rediscovering Freedom,
aka Oskuro in || jordi@sindominio.net || Using Debian GNU/Linux
Reinos de Leyenda || jordi@debian.org || http://debian.org

http://sindominio.net GnuPG public information: pub 1024D/917A225E
telnet pusa.uv.es 23 73ED 4244 FD43 5886 20AC 2644 2584 94BA 917A 225E
Re: RFE, handling invalid/revoked uids [ In reply to ]
wk at gnupg
Jul 31, 2000, 1:06 AM
Post #4 of 4 (475 views)
Permalink
On Fri, 28 Jul 2000, Jordi Mallach wrote:

> > The whole trust stuff is a big mess and I will address this in the
> > development version, spending more time on the current code base is
> > not worth the time.
>
> Will there be development releases, or we need to get these directly from
> CVS?

It will happen in 1.1 not in 1.0 anymore. I have just commited the
latest 1.1 changes and make check now works again (at least on GNU
systems)

Werner

--
Werner Koch OpenPGP key 621CC013
OpenIT GmbH http://www.OpenIT.de

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal