[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: PGP v3 key support to be dropped from Debian keyring

On Sat, May 01, 2010 at 11:01:14PM +0200, Jeffrey Ratcliffe wrote:
> On Fri, Apr 30, 2010 at 01:57:24PM +0100, Jonathan McDowell wrote:
> > I have sent numerous mails over the past year to try and chase DDs with
> > v3 keys to generate a new v4 key that is linked into to our web of
> > trust. In that time we've gone from 200 v3 keys down to 20. While it
> Have there been any checks of DMs or those in the NM process?
> How can I find out which keys in my own keyring are v3?

lakeview ok % gpg --fingerprint --list-keys --with-colons | awk -F: '/^pub:/ { cur = $10 } /^fpr:/ { if (length($10) == 32) print cur }

This works because v3 keys[0] use MD5 as a fingerprint algorithm, which
is 128 bits long (and 32 hex characters) while v4 keys use SHA1, which
is 160 bits long.  It only prints out one of the UIDs on the key, not
all of them.

[0] And v2, but for practical considerations, v2 keys are identical to
v3 keys, except that nobody uses v2 keys anymore.
brian m. carlson / brian with sandals: Houston, Texas, US
+1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only
OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187

Attachment: signature.asc
Description: Digital signature

Reply to: