[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] New Keyservers and Dumps

From: Kristian Fiskerstrand
Subject: Re: [Sks-devel] New Keyservers and Dumps
Date: Thu, 23 Aug 2018 15:49:40 +0200
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.9.0

On 08/20/2018 03:26 PM, Eric Germann wrote:
> I’ve reworked the keyserver fleet we’d previously deployed and made a blog 
> post [1] about it.

Are the servers clustered in any way? In my experience each site needs
at least 3 nodes to ensure proper operation (mainly if A and B are
gossipping C can still respond to requests, depending on the amount of
traffic / speed of the node to return more is better)

So clustered setup is more important than large number of individual
servers, as there is no retry functionality in dirmngr.

I'm still looking for more clustered setups to include into hkps pool,
in particular since noticing an interesting feature if only one server
is included, which disables pool behavior in dirmngr and results in TLS
error / generic error due to CA pem not being loaded...

Kristian Fiskerstrand
Twitter: @krifisk
Public OpenPGP keyblock at hkp://
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
"We all die. The goal isn't to live forever, the goal is to create
something that will."
(Chuck Palahniuk)

Attachment: signature.asc
Description: OpenPGP digital signature

reply via email to

[Prev in Thread] Current Thread [Next in Thread]