Re: [Sks-devel] Launching a new keyserver on keys.openpgp.org!

[Vincent Breitmoser]

Hi Tom,

> Are you also planning to add SKS-compatible endpoints over http? Eg:
> https://keys.openpgp.org/pks/lookup?search=look@my.amazin.horse

Of course! This is already supported, your URI just wasn't valid because it
didn't include an "op" paramter:
https://keys.openpgp.org/pks/lookup?op=get&search=look@my.amazin.horse
https://keys.openpgp.org/pks/lookup?op=index&search=look@my.amazin.horse

This is also documented in our API documentation. I daresay it's even hard to
miss, making up almost half the page?  https://keys.openpgp.org/about/api

> Similar for uploading (after which you send your email verification). It
> may help some users transition.

It is common practice to use `--send-keys` on other people's keys, to publish
new signatures. I also don't want to send out many emails if users have many
user ids. For that reason we probably won't be able to use that API endpoint to
send out email verifications.

I thought about sending out a "welcome" mail to the primary user id when a key
is first uploaded via HKP. This wouldn't be for verification, but just informs
the user about the service, and that their key was just uploaded (by them or
somebody else). But so far this isn't implemented, and it's not too high on my
list of priorities.

> Is there any counter to see roughly how many keys are available?

There is not, but perhaps there should be! I can say that so far (since launch),
there are about 800 verified e-mail addresses. :)

Since we imported the sks-dump as an initial seed, there are also some 5M+ keys
without identities. Wouldn't want anyone to miss revocations that are already
available via SKS when they switch to us.

 - V


___
Sks-devel mailing list
Sks-devel@nongnu.org
https://lists.nongnu.org/mailman/listinfo/sks-devel

Re: [Sks-devel] Launching a new keyserver on keys.openpgp.org!

[Tom at FlowCrypt]

Thanks for the effort. I see keys can be retrieved as follows:
https://keys.openpgp.org/vks/v1/by-email/look@my.amazin.horse
https://keys.openpgp.org/vks/v1/by-fingerprint/D4AB192964F76A7F8F8A9B357BD18320DEADFA11

Are you also planning to add SKS-compatible endpoints over http? Eg:
https://keys.openpgp.org/pks/lookup?search=look@my.amazin.horse

Similar for uploading (after which you send your email verification). It
may help some users transition.

Is there any counter to see roughly how many keys are available?


On Wed, Jun 12, 2019 at 5:16 PM Vincent Breitmoser 
wrote:

>
> Hey sks-devel folks,
>
> the Hagrid team is pleased to announce the launch of our new keyserver,
> running
> at keys.openpgp.org!
>
> https://keys.openpgp.org
>
> Here's the short story:
>
> * Fast and reliable. No wait times, no downtimes, no inconsistencies.
> * Precise. Searches return only a single key, which allows for easy key
> discovery.
> * Validating. Identities are only published with consent, while
> non-identity information is freely distributed.
> * Deletable. Users can delete personal information with a simple e-mail
> confirmation.
> * Built on Rust, powered by Sequoia PGP - free and open source, running
> AGPLv3.
>
> Full news announcement:
> https://keys.openpgp.org/about/news#2019-06-12-launch
>
> Our primary motivation was to have a place where OpenPGP clients can
> reliably
> and quickly obtain updates to key material (subkeys, revocations, ...),
> and that
> also has as a simple and useful way of key discovery.
>
> Some of the things we do are a bit experimental. For some things we found
> that
> there is no good mechanism at this point, so we decided to drop them for
> now.
> Most notably this includes third party signatures on keys, because they in
> their
> current form the difficulties wrt privacy and spam outweigh their
> usefulness.
>
> The server implementation Hagrid (as in, "keeper of keys") is developed
> here:
> https://gitlab.com/sequoia-pgp/hagrid
> Feel free to file issues if you find anything out of place. Please read
> our FAQ
> first ;)
>
> Huge thanks to Kai for the initial implementation, Justus and Neal for
> creating
> Sequoia and working with me on this, dkg and Paul for testing and tons of
> feedback, Phil for providing us with the domain, and of course everyone who
> helped us test and polish this thing!
>
> Happy to hear your feedback!
>
>  - V
>
>
> ___
> Sks-devel mailing list
> Sks-devel@nongnu.org
> https://lists.nongnu.org/mailman/listinfo/sks-devel
>
___
Sks-devel mailing list
Sks-devel@nongnu.org
https://lists.nongnu.org/mailman/listinfo/sks-devel