[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] disable key receiving
|
From: |
Phil Pennock |
|
Subject: |
Re: [Sks-devel] disable key receiving |
|
Date: |
Fri, 22 Feb 2013 17:33:09 -0500 |
On 2013-02-21 at 15:22 -0300, Rafael wrote:
> Is there a way I can disable the receiving of keys? The idea is people only
> can search for public keys and when they want to add one they send it to
> our admin and he puts it into the server.
What are you trying to achieve?
Based on your description, anyone who doesn't want to worry about the
bureaucracy simply uses "gpg --keyserver some.public.server --send-key
$keyid" and waits for you to retrieve the key from the public peering
mesh.
Either you have a trusted server of just local keys, or you have a
public server, but you can't have both in one process.
You might have a tool which you run from cron, which checks public
servers for new signatures on existing keys in the private server and
pulls those, so that new signatures can appear locally. Does that solve
the underlying issue?
-Phil