Signing and encripting with GPG...

Ladislav Strojil Ladislav.Strojil at seznam.cz
Mon May 6 13:20:36 BST 2002


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Monday 06 May 2002 13:16, Marian Stepka wrote:
> Howzit;
>
> Probably stupid problem, because it's not so important, but anyway. When I
> received signed message and I'm online when I open it GPG automatically
> download public key from the server if it is available. This seems to be
> OK.

Well, if your GnuPG is configured to automatically download unknown keys, then 
this is what happens. :-))

> But, when I want to use this public key for encryption I must first sign
> it. Is this OK?

This deserves few words.
You should only sign key that you really trust. Do not sign unknown keys (eg. 
just downloaded from internet).
If you still want to use them for encryption, sign them locally, so that your 
signature is not exported to keyservers. (--lsign)
- From KMail point of view, this behaviour is right, you cannot use untrusted 
keys for encryption.

> Another problem is, that key appear in the list of available keys only by
> one of this ways:
>
> 1. Restarting KMail.

As far as I know some work is done in this directions. Currently, you need to 
restart KMail. This is because keyring is read only upon KMail startup.

> 2. Restarting whole KDE.
This should not be needed at all.

Cheers,
Lada

- -- 
    ~       Ladislav Strojil, MFF UK
  ' v '               
 //   \\              
/(     )\    Powered by Penguin.
  ^ ' ^
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE81nUUTnMZPFqq4nwRAt5zAJ0b6jXMl16KHXXk+imZZrOOQ9IJRQCdH+lZ
yIVcIi/ahVAM4qqZsmG5EE4=
=lwu5
-----END PGP SIGNATURE-----

___________________________________________________
This message is from the kde mailing list.
Account management:  http://mail.kde.org/mailman/listinfo/kde.
Archives: http://lists.kde.org/.
More info: http://www.kde.org/faq.html.




More information about the kde mailing list