On Sunday, March 09, 2014 11:30:56 Sean Swehla wrote: > I've signed all the keys that I verified at the meeting last week, and I've > received a few signatures already. Is there any standard for for sending > out the signed keys?
Sadly, no. Each key signing I've ever been involved in does this differently. IMHO the best you can do is describe the expected process(es) before the key signing event so one knows what to do expect to do and what you'll get in return. > Of the three I've received so far, I've had one uploaded to the keyservers, > one uploaded and a signed confirmation emailed, and one encrypted and > emailed to each UID but not uploaded. > > Also, do you recommend any good tools? `gpg` is fine for uploading, as is > Enigmail, it seems. The emails I've received look like they're either > auto-generated or tedious to construct. is there something that will email > a signed key to it's owner? The 'caff' utility in the signing-party package is what I use too, but I had trouble using it at first because it sends its resultant emails to a /local/ MTA, and so if one is not installed or if one is but not configured, the resultant encrypted/signed emails end up going to /dev/null such that you /think/ you've sent recipients what they need, but in actually you haven't. Additionally, the 'caff' utility doesn't use your normal ~/.gnupg/gpg.conf configuration. See the FILES section of 'man caff'. Did I mention this was complicated and error-prone? ;-) -- Chris -- Chris Knadle [email protected]
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Mid-Hudson Valley Linux Users Group http://mhvlug.org https://mhvlug.org/cgi-bin/mailman/listinfo/mhvlug Upcoming Meetings (6pm - 8pm) Vassar College Apr 2 - Nginx: High-Performance HTTP Server, Reverse Proxy, and IMAP/POP3 Proxy Server May 7 - Google App Engine Jun 4 - Samba: Can We All Just Get Along?
