key servers don't allow for revocation? last i checked they did.
STEED: End-to-end email encryption
Posted Nov 1, 2011 8:10 UTC (Tue) by spaetz (subscriber, #32870)
An even if they didn't that were mainly an argument to add that capability. I believe that running a few reliable key servers will be less hassle than convincing my mail provider to fudge their DNS server to provide my gpg key.
Posted Nov 2, 2011 8:29 UTC (Wed) by dd9jn (subscriber, #4459)
Posted Nov 2, 2011 8:26 UTC (Wed) by dd9jn (subscriber, #4459)
It is also impossible to remove a key from a keyserver - that is by design and we can't do anything about it. Now with DNS, it is pretty simple to remove the key. In our proposed trust model this removal is also used as an equivalent to a key revocation. Sure, anyone can simply put copies of the keys on keyservers etc - but that is not the point.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds