[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] nokeyserver annotation
|
From: |
Kim Minh Kaplan |
|
Subject: |
Re: [Sks-devel] nokeyserver annotation |
|
Date: |
Tue, 20 Dec 2016 17:24:56 +0000 |
Daniel Kahn Gillmor wrote:
> i've been trying to make it possible for key to state that
> it should be excluded from some keyservers, but those attempts to fix
> things have failed thus far due to filter synchronization issues:
>
>
> https://bitbucket.org/skskeyserver/sks-keyserver/pull-request/20/trim-local-certifications-from-any-handled
>
> I want to try again, but with a different approach, and i want feedback
> about it.
>
> I'd like the keyservers to reject keys with any self-sigs with the
> "nokeyserver" notation. The novel thing is that this notation doesn't
> exist yet :)
Some quick thoughts:
- interesting idea,
- to do this keyservers will have to actually do cryptography
- how does one propagates a "nokeyserver" annotation on a key in the
SKS network when this network does not carry said key
- It would help if you started by stating what real world problem you
are trying to solve. You realize that it will *not* solve the problem
where server operators are asked to remove a key from their server?
--
Kim Minh.
Re: [Sks-devel] nokeyserver annotation, Kiss Gabor (Bitman), 2016/12/20
Re: [Sks-devel] nokeyserver annotation, Daniel Kahn Gillmor, 2016/12/20