-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On 13/05/14 16:25, Bert Yerke wrote: >> I *think* that it's better to publish the full 16-character form >> of the key id rather than the 8-character one. Mine is >> 0x4825C90A45758A21. >> >> gpg --list-keys --keyid-format long USERNAME >> > The chance of collision is extremely low with an 8 character ID but > it is infinitesimal with a 16 character ID. 16 is definitely > recommended.
That's what I thought, but I hadn't ever heard of there being a collision with the 8-character id. I guess the chance of collisions will increase as more and more people use GPG etc. >> I'm sure there's more... > > If a public key is not hosted on a key server it should at least be > available from a personal website or something like that. OTOH if > you are initiating a conversation with someone via e-mail and you > want to use encryption/signature, the public key should be sent as > an attachment to the message. In my case it can save confusion as > to which key is used to sign/encrypt the message since there are > several on the server. Also, if you search for a public key you > should always use the keyID (if available) for the same reason. Good advice. Again, I imagine that as the population of the key servers grows there will be greater scope for confusion. Dave - -- Dave Morriss, Edinburgh, Scotland, UK | [email protected] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with undefined - http://www.enigmail.net/ iQIcBAEBCgAGBQJTckiRAAoJEEglyQpFdYohVB0P/1B3WdyrpsKeGnEtleC8znnz R+AlnpxEytxtOlvs0L//KUrQTNkQXHOECI1faX7dJ+dv0T881MzIfCusLer+HttU 7XtCTw+8f/UL2lIIoL7SXcXBpsLP+oadOhtcy+KNM9sw6quRnxSzQPvcbm8FkbS5 E6RamZ+96qzAmTNel/u+LYbmsw5KclAl4YcE2PdQhbyyQDq1BnbOBEMwL1XXU4pO kxA3x0QwYCwv3OOTlDYdszaH/p3rmUXD4+XM9ynLNcnoscdCUbczGWZlvLZjOTnn myAYl0nxxnSvpLPorZvxSyJZLtHQcc5Go91wWY16aZoES1yMIzCZN78ZMJD5NAGo yuFgjYyaFoDFY0QRnbDR1mJ2PjKa/hpATcmF8UZkIVmiP1GCv54aRLmh0NhLKx3H CJB1S671JJcDTJTiZNyecek6CMANSKNMRPjArrtpg1uFwzFzGEOuxFsdpGihYzVg +Mymv4KF3A/MqBv2l6VWoD8zTs+Y+qDmVCAeLkdv2YtKVgTSNFZfyspPavcjKe5f itmbR1NmQx8z/LTJzK8Jbi9dces0BbHgfGAT+4j2hmIX4C8OS2Z2pyxNRO0WJ1g+ uX7fzdwwekRCioOFTUDyXpHSYc1pqT9XTE6S4djfHpDINv+TL7FYLysxLoAaLR/+ 7EZx2gikXPYWu2JM26X1 =JqWe -----END PGP SIGNATURE----- _______________________________________________ Hpr mailing list [email protected] http://hackerpublicradio.org/mailman/listinfo/hpr_hackerpublicradio.org
