DISQUS

Hello! dmiessler.com | grep understanding is using DISQUS, a powerful comment system, to manage its comments. Learn more.

Community Page

dmiessler.com/ Jump to website »

Subscribe
- New Comments
Community
Top Commenters
- Daniel Miessler
  1031 comments · 2 points
- CarlM
  514 comments · 2 points
- cooperati
  179 comments · 1 points
- arikb
  89 comments · 1 points
- brooksgarrett
  52 comments · 1 points
Popular Threads
- Considering Using danielmiessler.com Instead of dmiessler.com
  3 weeks ago · 8 comments
- Republicans: The Modern Dixiecrats?
  3 weeks ago · 8 comments
- Music | Mastodon: Crack the Skye
  4 weeks ago · 4 comments
- Outbound Number Translation Coming to Google Voice Soon
  3 weeks ago · 3 comments
- Wireless: WPA2 Enterprise Integration With Active Directory 2008
  3 weeks ago · 3 comments
Recent Comments
- I think this is a very helpful link. It fixes all the keyboard mapping problems. Even for VMware server 2.0 http://communities.vmware.com/message/1091425
  3 weeks ago by Mario R Mena
  
  in VMware Server 2.0 For Linux Doesn’t Have a “Send Ctrl-Alt-Del” Button
- Test.
  3 weeks ago by Daniel Miessler
  
  in Testing the New Domain
- "Yes, it helps people through altered perception of the world, but so do three glasses of wine." ___ Oh, so atheists do not drink alcohol because it is too much like religion?...
  3 weeks ago by SayBlade
  
  in Atheism Argued Successfully by Two Quotations
- burden is on those who make the assertion, not on those who deny
  3 weeks ago by Adam
  
  in Atheism Argued Successfully by Two Quotations
- • Theism is not a religion. Atheism is not a religion for the same reason. 'Theism' is an abstract noun which refers collectively to each organized religion which espouses the existence of...
  3 weeks ago by anti-supernaturalist
  
  in The Definition Of Atheism, And Why It Is *NOT* A Belief

dmiessler.com | grep understanding

dmiessler.com/about/

Jump to original thread »

Why Don’t We Clean Up The PGP Key Servers?

Started by Daniel Miessler · 7 months ago

I think the InfoSec community needs to make a push to purge the PGP key servers. I think it’d be nice to start off with a clean slate, you know? Virtually everyone I know has at least one public key up on a server that they no longer have the secret key for. It’s a [... ... Continue reading »

8 comments

Darren Chamberlain
3 years ago

+1

I think the operators of the keyservers disagree, though. In the past, I spent some time on the gnupg-users list, and every once in a while someone would ask how to delete their old unusable keys, and the keyserver operators would chime in with reasons about why it was a bad idea. I don't remember most of the reasons, but I was never quite convinced.

reply

Zhasper
3 years ago

+1

Hear Hear!

reply

Daniel Miessler
3 years ago

I'd be interested in hearing their reasons. I can see why not to allow arbitrary key deletion from users, but they should consider doing a "house cleaning".

reply

Jason Powell
3 years ago

I am deeply troubled by the PGP clutter. Seriously, this keep s me up at nights. ;)

reply

Daniel Miessler
3 years ago

Peoples' comments who don't use PGP don't count. ;)

reply

Jason Powell
3 years ago

I beg your pardon, but I actually do use PGP, daily. So there. Nuh.

reply

Calum
3 years ago

Just saw your post on Digg, and yes, I think we've all lost the key (and passphrase) from the time we tried it first in 1998.

pgpkeyserver # rm /var/spool/keys/* -rf
pgpkeyserver #

reply

Tortanick
2 years ago

Like most PGP users I have at least one unrevoked public key from my early experiments lyeing around, I'd like to see this problem fixed too.

My own suggestion would be to ban keys with infinite expirery dates. 3 years should be the absolute maximum. Any infinite timed keys in existance shall be given 3 years untill expery.

reply