And now there’s a way to do this, but decentralized. That’s all I ever wanted Keybase to do for me. You can host the web app somewhere, or use Wiktor’s installation, passing along the fingerprint in question as part of the URL: Signature notation: notation: notation: notation: the URL and check that the fingerprint mentioned is in fact the fingerprint you used in your query. Here’s how to manually verify the key: gpg -list-options show-notations -list-sigs df9446eb7b7846387ccc018bc78ca29bacecfeae | grep proof But we need to agree on a key for tools to work and so is as good as any. Using this kind of keys (without namespacing) is only allowed for IETF-approved extensions though (I did not approach them). Ideally the notation key would be just proof. You need to create notations under the domain that you own to avoid conflicts. RFC 4880 specifies this kind of format as a way to namespace custom notations. This e-mail-like string is actually notation key. If you’re wondering about the key used, there’s an explanation in the FAQ: Gpg: sending key C78CA29BACECFEAE to hkps:// gpg -edit-key df9446eb7b7846387ccc018bc78ca29bacecfeaeĮnter the notation: notations on user ID "Alex Schroeder "Īdding notation: notations on user ID "Alex Schroeder "Īdding notation: notations on user ID ""Īdding notation: rsa8192/C78CA29BACECFEAE Now, edit your key, adding a notation pointing to the Gist, save it, and send the key to the keyservers. Write whatever but somewhere in that text, use the String Verifying my OpenPGP key: openpgp4fpr. I’m going to create a proof for my GitHub account.Ĭreate a new Gist. Gpg: sending key C78CA29BACECFEAE to hkps:// GitHub Send your key to keyserver: gpg -send-key df9446eb7b7846387ccc018bc78ca29bacecfeae For a modern GPG installation, your ~/.gnupg/gpg.conf file should have this line: keyserver hkps:// The fingerprint in question, with no spaces and converted to lower case: df9446eb7b7846387ccc018bc78ca29bacecfeae (and many other expired and revoked keys) potentially use some software to verify it, or do it manuallyĭetermine my fingerprint: gpg -fingerprint rsa8192 ĭF94 46EB 7B78 4638 7CCC 018B C78C A29B ACEC FEAE.add that link to your key in a particular way.
0 Comments
Leave a Reply. |