[Sks-devel] Min. Requirement for SKS Version in the Pool

[Kristian Fiskerstrand]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hi,

In order to have the full pool being able to handle searching subkeys
using the Long KeyID, which is available in SKS 1.1.3, I intend on
making some changes to the minimum required SKS version of the servers
to be included in the main Pool.

- From the SKS CHANGELOG for 1.1.3: "
  - Allow &search with long subkey ID (16 digit) and subkey fingerprint
    subkey lookup was failing with other than a short key ID. However,
    public key lookup was working with short and long key ID and
    fingerprints.
    This patch makes subkey lookup behave the same as full key lookup.

http://lists.gnupg.org/pipermail/gnupg-users/2012-January/043495.html "

Currently only the sub-pool: subset.pool.sks-keyservers.net is already
LongID safe due to its min version requirement of 1.1.3 [0]

On the way to this goal, grandfathering 1.1.2 seems to be necessary to
maintain a higher number in the pool. Currently I see, of total of 64
servers included in the Pool at the time of writing;
alpha status # php debug_version.php  | sort | uniq -c
      3 GnuKS:0.9.2
     31 SKS:1.1.1
      7 SKS:1.1.2
     19 SKS:1.1.3
      4 SKS:1.1.3+

Id est 26 servers that are upgraded to 1.1.3 or later (1.1.3+ is
Trunk, and GnuKS 0.9.2 is based on 1.1.3).

As of *7. July 2012* I intend to change the minimum version for
qualification in the pool to 1.1.2, which would currently mean that
the number of servers in the pool will be 33 (although I expect more
servers to be upgrade by this time, one of the reasons being that
1.1.3 is now available in the Debian repository).

As of *1. August 2012* I intend to change the minimum version for
qualification in the pool to 1.1.3.

If there are strong objections to these changes, please let me know
before the aforementioned dates.

[0] http://sks-keyservers.net/overview-of-pools.php

- -- 
- ----------------------------
Kristian Fiskerstrand
http://www.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Corruptissima re publica plurimæ leges
The greater the degeneration of the republic, the more of its laws
- ----------------------------
This email was digitally signed using the OpenPGP
standard. If you want to read more about this
The book: Sending Emails - The Safe Way: An
introduction to OpenPGP security is now
available in both Amazon Kindle and Paperback
format at
http://www.amazon.com/dp/B006RSG1S4/
- ----------------------------
Public PGP key 0xE3EDFAE3 at http://www.sumptuouscapital.com/pgp/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=XLS3
-----END PGP SIGNATURE-----