Re: Post-KSP questions and comments

Fri, 17 Feb 2006 17:53:44 -0800 

On Fri, Feb 17, 2006 at 08:39:33PM -0500, Anthony Carrico wrote:
> I think you may have to do something like using a TEMPORARY key ring
> to create and export each sig. Then you just email it and later it
> will show up in your real keyring when it makes it into a keyserver
> and you sync.

Here is a lightly edited example of this method:

Script started on Fri 17 Feb 2006 08:59:42 PM EST
$ touch /tmp/keyring
$ gpg --keyring=/tmp/keyring --no-default-keyring --recv-key 31037db0
gpg: requesting key 31037DB0 from hkp server subkeys.pgp.net
gpg: key 31037DB0: public key "Renee Carrico <[EMAIL PROTECTED]>" imported
gpg: public key of ultimately trusted key 7ED06B5C not found
gpg: 3 marginal(s) needed, 1 complete(s) needed, classic trust model
gpg: depth: 0  valid:   1  signed:   0  trust: 0-, 0q, 0n, 0m, 0f, 1u
gpg: Total number processed: 1
gpg:               imported: 1

$ gpg --keyring=/tmp/keyring --primary-keyring=/tmp/keyring ---edit-key 31037db0
pub  1024D/31037DB0  created: 2000-08-21  expires: never       usage: CS  
                     trust: unknown       validity: unknown
sub  1024g/9FECD91D  created: 2000-08-21  expires: never       usage: E   
[ unknown] (1). Renee Carrico <[EMAIL PROTECTED]>
[ revoked] (2)  Renee Johnson <[EMAIL PROTECTED]>
[ unknown] (3)  Renee Carrico <[EMAIL PROTECTED]>

Command> uid 3

pub  1024D/31037DB0  created: 2000-08-21  expires: never       usage: CS  
                     trust: unknown       validity: unknown
sub  1024g/9FECD91D  created: 2000-08-21  expires: never       usage: E   
[ unknown] (1). Renee Carrico <[EMAIL PROTECTED]>
[ revoked] (2)  Renee Johnson <[EMAIL PROTECTED]>
[ unknown] (3)* Renee Carrico <[EMAIL PROTECTED]>

Command> sign

pub  1024D/31037DB0  created: 2000-08-21  expires: never       usage: CS  
                     trust: unknown       validity: unknown
 Primary key fingerprint: 141F 74D4 9E6A 6171 5C42  6FF1 2A53 CDFC 3103 7DB0

     Renee Carrico <[EMAIL PROTECTED]>

Are you sure that you want to sign this key with your
key "Anthony Carrico <[EMAIL PROTECTED]>" (7ED06B5C)

Really sign? (y/N) y

You need a passphrase to unlock the secret key for...

Command> save

$ gpg --keyring=/tmp/keyring --primary-keyring=/tmp/keyring ---armor --export 
31037db0 > renee-sig.txt

$ gpg --list-packets renee-sig.txt
...
:user ID packet: "Renee Carrico <[EMAIL PROTECTED]>"
...
:signature packet: algo 17, keyid B1886B9C7ED06B5C
        version 4, created 1140228203, md5len 0, sigclass 10
        digest algo 2, begin of digest a7 c7
        hashed subpkt 2 len 4 (sig created 2006-02-18)
        subpkt 16 len 8 (issuer key ID B1886B9C7ED06B5C)
        data: [159 bits]
        data: [159 bits]

$ rm /tmp/keyring
$ exit

Script done on Fri 17 Feb 2006 09:06:44 PM EST

-- 
Anthony Carrico
http://giftfile.org

Reply via email to