PGP: is there such a thing as a "signature only key?"
Dave Bird
dave at xemu.demon.co.uk
Thu, 18 Oct 2001 05:15:49 +0100
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
In article <Pine.LNX.4.30.QNWS.0110171633500.19376-100000@thetis.deor.or
g>, Len Sassaman <rabbi@quickie.net> writes
>On Thu, 18 Oct 2001, Dave Bird wrote:
>
>> But my PGP 6.5.3 for Win32 does not do this. Or, apparently,
>> even refuse to encrypt to such keys.
>
>Well, given that encryption to DSA keys is not possible, it certainly
>does refuse to encrypt to them.
>
>When you generate a key with PGP 6.5.8, it will automatically create the
>signing-only key and an encryption subkey (ElGamal, called DH in PGP).
>Delete that subkey before publishing your public key, and you'll be all
>set.
At the risk of boring the list to death -- I do so because it's
an error which may trip up other users, and annoys the hell out
of people with signature only keys -- I want to nail this one down.
I'm talking about a key 0x3E2056B9, Owen Blacker <SIGNATURE KEY ONLY>.
It appears to have an encryption part too, for CAST cypher.
One of us is doing it wrong, and I want to nail this problem down.
Not least because I'm being accused of hacking, denial of service
attacks, etc, behind my back and generally being called blind.
If "SIGNING ONLY" keys must carefully delete the encryption key,
else PGP6 on Windoze will encrypt to their encryption part,
then that is the problem and people who make such keys must
be aware of, and fix, the problem.
- --
^-^-^-@@-^-;-^ http://www.xemu.demon.co.uk/
(..)__u news:alt.smoking.mooses
-----BEGIN PGP SIGNATURE-----
Version: PGPsdk version 1.7.1
iQA/AwUBO85XdX8v/Y5zkfRPEQIHAgCgugX6xJRT5jKFAfGtrcPMnoJuLk8An1ig
jpDdAPLmilj5uhP1ZJxZpKWT
=FQsX
-----END PGP SIGNATURE-----