From: weasel Date: Sat, 2 Jul 2005 21:52:56 +0000 (+0000) Subject: short options are evil too. descript that v3 keys should be avoided X-Git-Url: https://git.sthu.org/?a=commitdiff_plain;h=447dfe626aa5d4cb26c2e04fc55812e5214fc2a3;p=pgp-tools.git short options are evil too. descript that v3 keys should be avoided git-svn-id: svn://svn.debian.org/pgp-tools/trunk@111 b513b33f-fedd-0310-b452-c3deb5f4c849 --- diff --git a/caff/README.many-keys b/caff/README.many-keys index ce57d5e..5d5c2f2 100644 --- a/caff/README.many-keys +++ b/caff/README.many-keys @@ -17,23 +17,29 @@ Some hints to get the signing done faster: * v3 keys are evil. - Sign v3 separately. Batch processing does not work. See README.v3-keys. + V3 keys (pgp 2.6x keys) are deprecated. Not only do they rely on md5 for + their fingerprint and signatures, they also use the patented IDEA algorithm + for encryption. Many people (like caff's author) refuse to sign v3 keys + these days. + + If you want to sign v3 keys, sign v3 separately. Batch processing does not + work. See README.v3-keys. * Use multiple passes. Going through retrieving, signing, and mailing keys can help, e.g.: - $ caff -SEM `cat ksp-fingerprints.txt` - $ caff -REM `cat ksp-fingerprints.txt` - $ caff -RSE `cat ksp-fingerprints.txt` + $ caff --no-sign --no-export-old --no-mail `cat ksp-fingerprints.txt` + $ caff --no-download --no-export-old --no-mail `cat ksp-fingerprints.txt` + $ caff --no-download --no-sign --no-export-old `cat ksp-fingerprints.txt` * If you have multiple local keys, only send mail once after signing with all. caff will send out all previously done signatures in the message. (Of course you have to configure $CONFIG{'keyid'} to contain all your key ids.) - $ caff -EM -u - $ caff -RE -u + $ caff --no-export-old --no-mail -u + $ caff --no-download --no-export-old -u * Use gpg-agent.