[MlMt] PGP Usage & Untrusted Keys

[Robert M. Münch]

On 3 Jan 2017, at 15:45, David Ledger wrote:

> If you signed and trusted the key yourself then that trust only applies to you, no-one else can have that trust. The message may be reflecting its ‘trustability’ by others.

Hi, the GPG Keychain shows it as fully trusted (which makes sense for my context) and would show it "untrusted" for others. Since I expect the same "check approach" it should yield "trusted" to MM as well.


> It also gives a heads-up as to why opening a list message from you makes MailMate become unresponsive for a full two minutes, eventually giving the error:
> 	Unable to verify signature for OpenPGP message.
> 	No public key could be found for verifying the message signature.

Thanks, for the pointer. I just switched key-server and published my pubic-key. You can see it here:

http://pgp.zdv.uni-mainz.de:11371/pks/lookup?op=vindex&search=robert.muench%40saphirion.com&fingerprint=on

> with a ‘Show Details’ button. Clicking that gives
> 	NEWSIG
> 	ERRSIG E12C4810802DFEF0 1 10 01 1483446639 9
> 	NO_PUBKEY E12C4810802DFEF0
> after another two minutes, for the message I’m replying to.

Which indicates a time-out. Can you please re-try? The new key upload should already have spread to all the different key-servers.


> I’m using GPG rather than OpenPGP if that matters.

Me too.

-- 

Robert M. Münch, CEO
M: +41 79 65 11 49 6

Saphirion AG
smarter | better | faster

http://www.saphirion.com
http://www.nlpp.ch
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 532 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freron.com/pipermail/mailmate/attachments/20170103/f0fe480a/attachment.sig>