AFTER THE PARTY [was Re: ANNOUNCEMENT: Bay Area Debian Get-Together and Key-signing Party]
Tony Godshall
togo@of.net
Tue, 10 Jul 2001 18:35:10 -0700
I must be too much a debian and gpg newbie for youse guys.
Caveat: I answered this in a couple passes, so it might be a
tad non-linear. Hope I'm not destroying the S/N ratio on this
list. :(
[Evan]
> Sorry, I thought I had said this before.
>
> The June 11th keyparty keyring is here:
>
> http://evan.prodromou.san-francisco.ca.us/bad-keyparty-13-jun.gpg
>
> You can download that and import the new sigs like
> so:
>
> gpg --import /path/to/bad-keyparty-13-jun.gpg
Yes I did that. Now what? I'm done? How do I verify?
[Drew]
> On Tue, Jul 10, 2001 at 02:27:16PM -0700, Tony Godshall wrote:
> > Q4: How to I check if my key has been signed according to
> > the keyservers?
>
> gpg --keyserver name.of.keyserver --recv-keys YORKEYID
Hmmm. Having some trougle with that one. Just get messages
about no changes.
Wait... This is what I was looking for!
gpg --list-sigs --keyserver www.dtype.org
gpg --list-sigs --keyserver keyring.debian.org
Ran Drew's script Seth's xargs command line before I found
this, so I don't know if it affected my results, but I have
signatures! In fact, I seem to have signed Evan's key six
times! (What does this mean?)
Thank you Seth, Aaron, Evan, Drew, Colin, Mike, and Daniel
for signing mine.
BTW, I seem to have had gpg defaulting to an old email address
(apgodshall@of.net) rather than togo@of.net (the one you bad guys
signed). Does this have any effect right now? Did I sign
your keys with the wrong key? Huh, not according to gpg
--list-sigs.
> > Q5: Which keyserver should I put in my ~/gnupg/options: the
> > pgp.net one or the debian one. It only seems to check one
> > of them when I read mail in mutt.
>
> I believe (biased, but probably true) that pgp.dtype.org
> (wwwkeys.us.pgp.net) is the best connected and most complete
> ring in the US, and one of the most connected few in the world.
> It is connected with SURFnet (nl), MIT, GATech (Peter Wan), and
> soon keyserver/certserver.pgp.com (NAI).
But doesn't that mean I would not verify against
keyring.debian.org? Or should I assume that every
Debian developer also puts his key in the dtype.org/pgp.net
system.
> > Q6: (perhaps off-topic) Is there a procmail or fetchmail
> > recipe I can use to have gpg go fetch/check keys when the
> > mail arrives on my system (occasionally it is annoying
> > waiting for gpg to retreive keys when reading messages is
> > sometimes annoying). I've searched a bunch of mailling list
> > archives but all I seem to find are recipes to encrypt or
> > sign outgoing mail automatically.
> Use a fast keyserver and the delay should be minimal.
Most of the time it is. But sometimes there's a network
hiccup and I hate to have to wait for some random net traffic
jam when reading mail that I know is on my (!#$#!) local drive!
> If you want to pull new sigs from all the keys in your ring, try the
> following perl.
See, I'm so far behind you guys I don't even know what this
means :( . I'm trying to see the relevancy to the question
above it. Oooh I am sooo confuzed (picture me with a napkin
tied to my head at four corners, Monty Python style) *my
brain hurts*!
OK. This must be slight a topic change. I think this
'pull new sigs' means to bring the signatures to a local
file (my default keyring?) for purposes of perusal (checking
the signatures from the keysigning party etc.) but that it
has nothing to do with the email prefetch question.
OK, I ran it. Seems to be doing something significant. I
found the --list-sigs option after I ran it, and assume the
info I got was due to the script or the
Thanks all,
--
Tony
PS: Is anyone else concerned that people who have signed Mike's
key seem to be disappearing?
pub 1024D/3B047084 1999-10-23 Mike Markley <madhack@madhack.com>
sig 3B047084 1999-10-26 Mike Markley <madhack@madhack.com>
sig 442E63C2 2000-04-07 [User id not found]
sig F801008A 2000-04-11 [User id not found]
sig 5AAF6F59 2000-04-07 [User id not found]
sig FD6645AB 2000-08-20 [User id not found]
sig 20021490 2000-11-19 [User id not found]
sig AE895899 2000-11-19 [User id not found]
sig D130D86E 2000-11-19 [User id not found]
sig 0BEE6CFC 2000-11-19 [User id not found]
sig D330F08D 2000-11-19 [User id not found]
sig 788A3F4C 2000-11-20 [User id not found]
sig 54C1C1C9 2000-12-04 [User id not found]
sig 7C25F775 2000-12-13 [User id not found]
sig 0167CA38 2001-06-14 Seth David Schoen <schoen@loyalty.org>
sig 700A0551 2001-06-14 Evan Prodromou (Securant Technologies, Inc.) <eprodromou@securant.com>
sig 66FBC18C 2001-06-14 M. Drew Streib <dtype@dtype.org>
sig E0A38377 2001-06-22 Daniel Jacobowitz <dmj+@andrew.cmu.edu>
uid Mike Markley <mike@markley.org>
sig 3B047084 1999-10-23 Mike Markley <madhack@madhack.com>
sig 442E63C2 2000-04-07 [User id not found]
sig F801008A 2000-04-11 [User id not found]
sig 5AAF6F59 2000-04-07 [User id not found]
sig FD6645AB 2000-08-20 [User id not found]
sig 20021490 2000-11-19 [User id not found]
sig AE895899 2000-11-19 [User id not found]
sig D130D86E 2000-11-19 [User id not found]
sig 0BEE6CFC 2000-11-19 [User id not found]
sig 40D0DB58 2000-11-18 [User id not found]
sig D330F08D 2000-11-19 [User id not found]
sig 788A3F4C 2000-11-20 [User id not found]
sig 54C1C1C9 2000-12-04 [User id not found]
sig 7C25F775 2000-12-13 [User id not found]
sig 0167CA38 2001-06-14 Seth David Schoen <schoen@loyalty.org>
sig 700A0551 2001-06-14 Evan Prodromou (Securant Technologies, Inc.) <eprodromou@securant.com>
sig 66FBC18C 2001-06-14 M. Drew Streib <dtype@dtype.org>
sig E0A38377 2001-06-22 Daniel Jacobowitz <dmj+@andrew.cmu.edu>