[buug] GPG Keysigning
Aaron T Porter
atporter at primate.net
Thu Sep 19 14:20:33 PDT 2002
On Thu, Sep 19, 2002 at 01:50:01PM -0700, Joseph Zitt wrote:
> I hope to come to this, and have been reading the gpg-party.html
> document. It says to upload the key to a keyserver, but I'm not clear
> as to the address of the appropriate keyserver. And should I email the
> fingerprint to someone, or just physically bring it with me?
My .gnupg/options file has the line:
keyserver wwwkeys.us.pgp.net
So after having made my key, I do:
$ gpg --list-secret
/home/atporter/.gnupg/secring.gpg
---------------------------------
sec 1024D/06AA8E37 2002-08-09 Aaron T Porter <atporter at primate.net>
ssb 2048g/E03C3ABA 2002-08-09
Which shows me that my keyID is "06AA8E37". So then I do this to
send the key to the keyserver.
$ gpg --send-keys 06AA8E37
You should send your key to the keyserver, and then take the
fingerprint. You *must* bring a copy of your fingerprint with you (if
you're really nice, a copy for everyone that you expect to sign your key)
but in a pinch pen & paper work too. You get your fingerprint by doing
this, you should bring/copy both the "pub" line and the "Key fingerprint"
line.
$ gpg --fingerprint 06AA8E37
pub 1024D/06AA8E37 2002-08-09 Aaron T Porter <atporter at primate.net>
Key fingerprint = 3963 8381 4B94 BD51 6F29 80E5 64B0 7250 06AA 8E37
sub 2048g/E03C3ABA 2002-08-09
When you get home, you'll want to pull down all the keys that you
are planning to sign:
$ gpg --recv-key 06AA8E37
Then you'll do a --fingerprint and double check the values against
the ones you were shown at the meeting. If they match, you can go ahead
and sign the key:
$ gpg --edit 06AA8E37
pub 1024D/06AA8E37 created: 2002-08-09 expires: never trust: u/u
sub 2048g/E03C3ABA created: 2002-08-09 expires: never
(1). Aaron T Porter <atporter at primate.net>
Command> sign
<deleted>
Command> save
More information about the buug
mailing list