Re: GPG Key question

To: debian-mentors@lists.debian.org
Subject: Re: GPG Key question
From: "B. L. Jilek" <bljilek@yahoo.com>
Date: Tue, 18 Jun 2002 01:41:56 -0400
Message-id: <[🔎] 20020618054156.GL2331@crowbyte.dnsalias.com>
Mail-followup-to: debian-mentors@lists.debian.org
Reply-to: "B. L. Jilek" <bljilek@yahoo.com>
In-reply-to: <[🔎] 20020618035342.GB24685@dodds.net>
References: <[🔎] 20020617021007.GA6386@green.daf.2y.net> <[🔎] 20020617172139.GA736@rene-engelhard.de> <[🔎] 20020617180234.GW20201@billjonas.com> <[🔎] 200206171939.52285.paul@cupis.co.uk> <[🔎] 20020617220756.GB12857@rene-engelhard.de> <[🔎] 20020617222158.GA3033@clothcat.demon.co.uk> <[🔎] 20020618025319.GF2331@crowbyte.dnsalias.com> <[🔎] 20020618035342.GB24685@dodds.net>

Hi Steve!

On Mon, 17 Jun 2002, Steve Langasek wrote:

> On Mon, Jun 17, 2002 at 10:53:19PM -0400, B. L. Jilek wrote:
> > Hi Stephen!
> 
> > On Mon, 17 Jun 2002, Stephen Stafford wrote:
> 
> > > On Tue, Jun 18, 2002 at 12:07:56AM +0200, Rene Engelhard wrote:
> > > > Paul Cupis wrote:
> > > > >                  Present  a  menu which enables you to do all key
> > > > >                  related tasks:
> > > > > 
> > > > >                  revsig    Revoke a signature.   GnuPG  asks  for
> > > > >                            every signature which has been done by
> > > > >                            one of  the  secret  keys,  whether  a
> > > > >                            revocation  certificate should be gen
> > > > >                            erated.
> 
> > > > > So it looks like you can generate a revokation certificate for a particular 
> > > > > signature.
> > > >   ^^^^^^^^^
> 
> > > > Yes, you can revoke a _signature_. But that was not the question. He
> > > > wanted to remove one of his _uid_'s. And that is *not* possible.
> 
> > > > Rene
> 
> > > Sure it is.  It has *exactly* the effect of removing the UID.  The UID
> > > remains, but is clearly marked as being revoked.  This should tell everyone
> > > that the UID is no longer to be associated with the key.  This is The
> > > Correct Way to remove stale UIDs AFAIK.
> 
> > Actually you can delete the uid.  It will not show up on the key.
> > If you don't have any other uid you will have to create a new one.
> 
> > I would delete it.  It don't look like it's the only signed uid
> > to me though.
> 
> Deleting anything is worthless once it's touched the global keyring.
> There is no way to issue a 'delete' command to keyrings, and even if
> there were, there's no way for keyrings to propogate that command to
> local GPG rings.  The only way to successfully take a GPG uid out of
> circulation is by appending /more/ information to it that renders it
> invalid: a revocation certificate.
> 

You have a point there.  Was not thinking of the key servers.


-- 
B. L. Jilek <bljilek@yahoo.com>
PGP keys on my website --> http://crowbyte.dnsalias.com/~tcrow/
Linux user: 163800 | Debian Rules! | Slackware Rocks!
-----------------------------------------------------------

Attachment: pgpDDpKSrUOLa.pgp
Description: PGP signature

Reply to:

References:
- GPG Key question
  - From: Duncan Findlay <duncf@rogers.com>
- Re: GPG Key question
  - From: Rene Engelhard <rene@rene-engelhard.de>
- Re: GPG Key question
  - From: Bill Jonas <bill@billjonas.com>
- Re: GPG Key question
  - From: Paul Cupis <paul@cupis.co.uk>
- Re: GPG Key question
  - From: Rene Engelhard <rene@rene-engelhard.de>
- Re: GPG Key question
  - From: Stephen Stafford <stephen@clothcat.demon.co.uk>
- Re: GPG Key question
  - From: "B. L. Jilek" <bljilek@yahoo.com>
- Re: GPG Key question
  - From: Steve Langasek <vorlon@netexpress.net>

Prev by Date: Re: GPG Key question
Next by Date: Re: lintian and statically link binaries
Previous by thread: Re: GPG Key question
Next by thread: Re: GPG Key question
Index(es):
- Date
- Thread