[Enigmail] From Circumvention
ludwig at enigmail.net
Thu Mar 5 07:42:42 CET 2015
-----BEGIN PGP SIGNED MESSAGE-----
On 04.03.15 23:33, Rainer Blome wrote:
> Am 04.03.2015 um 13:18 schrieb Patrick Brunschwig:
>> We could also implement something like an automatic monthly
>> check of all keys on keyservers.
> Would this amount to sending your "PGP address book" to the key
> server? That is something some might want to avoid.
The keyserver would be requested for every key in your keyring - of
course not for those which are already revoked.
> At the least, a keyserver should only be polled for those keys
> that were obtained from it. Is this information available in the
> key ring?
Do you mean, that keys should only be requested from the server it was
initially pulled from? No, this is not possible, as this information
is not stored. Also, I cannot see any advantage in doing this.
> An alternative would be a way to ask a server for "all key updates
> since X", sort of a "key stream"... which would be perfect for
> email address harvesting - bad idea.
Also, this would be VERY much data. This would practically mean a DDoS
for the servers.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
-----END PGP SIGNATURE-----
More information about the enigmail-users