[Debian-uk] GPG keys and QR codes
Daniel Silverstone
dsilvers at digital-scurf.org
Mon Aug 19 08:18:22 BST 2013
On Sun, Aug 18, 2013 at 22:29:00 +0100, Paul Martin wrote:
> Anyone proffering solely a QR code will be politely refused.
100% in support of this statement.
> [*] Make sure your key slip shows all the email addresses/uids you
> wish to be signed.
Not quite so bothered about this. So long as personal details are covered,
email addresses can be checked post-hoc using Caf or similar tools.
But names, any IRC nicks used on the key, etc should be present on the keyslip.
Also, remember to include not only your fingerprint, but size and type of key.
E.g.:
4096/R 1956 8523 759E 2A28 58F4 606B 3CCE BABE 206C 3B69
Otherwise you leave the door open to someone faking up a smaller key with the
same fingerprint.
Regards,
Daniel.
--
Daniel Silverstone http://www.digital-scurf.org/
PGP mail accepted and encouraged. Key Id: 3CCE BABE 206C 3B69
More information about the Debian-uk
mailing list