[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] Keyservers and GDPR
|
From: |
Werner Koch |
|
Subject: |
Re: [Sks-devel] Keyservers and GDPR |
|
Date: |
Wed, 29 May 2019 09:07:26 +0200 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) |
On Mon, 27 May 2019 13:30, address@hidden
said:
> requiring load-balanced setup with minimum of 3 nodes on modern hardware
> (e.g a node today requires a minimum of 8 GiB of RAM to be responsive
> during merge of certain keys). The propagation time between the servers
Which would support my point to redesign the keyservers to
- Inhibit searches by user id.
- Drop all key signatures except for self-signatures and designated
revocations.
The first change will make Gnupg --search-keys useless and that command
could thus be changed to do a --locate-key with disabled local keyring.
The second requires that key-signatures must be send to the key owner
directly, which is anyway what most people do. And obviously the key
owner needs to distribute them by other means than the keyservers to
make the few WoT users happy.
Right, this requires that self-signatures are verified on upload.
Salam-Shalom,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
signature.asc
Description: PGP signature
Re: [Sks-devel] Keyservers and GDPR, Tobias Mueller, 2019/05/27