[Debian-uk] GPG keys and QR codes

Daniel Silverstone dsilvers at digital-scurf.org
Mon Aug 19 08:18:22 BST 2013

On Sun, Aug 18, 2013 at 22:29:00 +0100, Paul Martin wrote:
> Anyone proffering solely a QR code will be politely refused.

100% in support of this statement.

> [*] Make sure your key slip shows all the email addresses/uids you
> wish to be signed.

Not quite so bothered about this.  So long as personal details are covered,
email addresses can be checked post-hoc using Caf or similar tools.

But names, any IRC nicks used on the key, etc should be present on the keyslip.

Also, remember to include not only your fingerprint, but size and type of key.


4096/R   1956 8523 759E 2A28 58F4  606B 3CCE BABE 206C 3B69

Otherwise you leave the door open to someone faking up a smaller key with the
same fingerprint.



Daniel Silverstone                         http://www.digital-scurf.org/
PGP mail accepted and encouraged.            Key Id: 3CCE BABE 206C 3B69

More information about the Debian-uk mailing list