[ale] 2 Odd Q's
greg at turnstep.com
greg at turnstep.com
Fri Jan 10 11:42:36 EST 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> 2) Is it possible to list multiple key servers for gpg so as to have a
> fall back incase one is down or unavailable (as happened to
> www.us.pgp.net recently.
No, but as a rule, do not use the *.pgp.net keyservers: they are buggy
and unreliable. You have to wrap gnupg in some simple logic (e.g. a perl
script) that catches the failed keyserver and tries another one. GA Tech
has a good keyserver.
> 1) Using PGP and GPG, is it possible to have 2 public rings, one that's
> your personal public ring you read and write to, one that's a read only
> file you'd treat like a keyserver? We want to do a company wide
> "file" to treat like a key server so that any kind of network outage
> won't take it down. Not my choice, it's something the guy designing
> the project is looking for. Everyone submits keys to a central key
> server which outputs to a file which is verified, sanified and rsync'ed
> out to remote mailservers for use.
Yes, just use multiple --keyring options. The list is searched in a FIFO
order, and you should probably add --no-default-keyring as well. You
make the public one "read-only" by normal file permissions, there is
no concept of that in gnupg, although the "--dry-run" option is
pretty neat and allows you to do some neat tricks.
> 2 Odd Q's
You said 2, so I am stopping here. :)
- --
Greg Sabino Mullane greg at turnstep.com
PGP Key: 0x14964AC8 200301101152
-----BEGIN PGP SIGNATURE-----
Comment: http://www.turnstep.com/pgp.html
iD8DBQE+Hvp4vJuQZxSWSsgRAhuHAJ4gXMcwfcp7w2SjpM9SJYlDDaNGFACcCSI2
c61aVFY5H7ZqPe+86MrHinA=
=rhSU
-----END PGP SIGNATURE-----
_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale
More information about the Ale
mailing list