[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] multiple subkey binding
|
From: |
David Shaw |
|
Subject: |
Re: [Sks-devel] multiple subkey binding |
|
Date: |
Wed, 3 Dec 2003 16:59:12 -0500 |
|
User-agent: |
Mutt/1.5.5i |
On Wed, Dec 03, 2003 at 04:05:11PM -0500, Jason Harris wrote:
> So, such legacy subpackets seem to be able to find the keyservers
> with newer versions of GPG, at least. How the versions of the
> signatures without the type 101 subpackets are getting generated is
> still unclear to me, however.
Not generated. Maintained, though. GnuPG doesn't tamper with the
private subpackets, since it doesn't know who generated them, or why.
It's an interesting question whether keyservers should maintain
unhashed data in sigs. Probably they should. It's an even more
interesting question whether keyservers, when seeing two identical
signatures except for unhashed data, should keep them both. I'm more
on the fence with that one. The unhashed data is not, after all, part
of the signature. It's just going along for the ride.
There's a keyserver DoS lurking in there, too. :)
David
- [Sks-devel] multiple subkey binding, Peter Palfrader, 2003/12/02
- Re: [Sks-devel] multiple subkey binding, David Shaw, 2003/12/03
- Re: [Sks-devel] multiple subkey binding, Jason Harris, 2003/12/03
- Re: [Sks-devel] multiple subkey binding, David Shaw, 2003/12/03
- Re: [Sks-devel] multiple subkey binding, Jason Harris, 2003/12/03
- Re: [Sks-devel] multiple subkey binding,
David Shaw <=
- Re: [Sks-devel] multiple subkey binding, Jason Harris, 2003/12/03
- Re: [Sks-devel] multiple subkey binding, David Shaw, 2003/12/03
- Re: [Sks-devel] multiple subkey binding, Werner Koch, 2003/12/04