[prev in list] [next in list] [prev in thread] [next in thread]
List: gnupg-users
Subject: Re: Question regarding unknown certificates
From: Werner Koch <wk () gnupg ! org>
Date: 2012-01-03 9:59:20
Message-ID: 87boqlksxz.fsf () vigenere ! g10code ! de
[Download RAW message or body]
On Tue, 25 Oct 2011 20:27, wk@gnupg.org said:
> On Tue, 25 Oct 2011 14:48, gnupg.user@seibercom.net said:
>> Since most of these certificates appear to be expired anyway, can I
>> just delete that file? I am not sure why they are being listed anyway.
>
> Yes.
I will keep them in the file because these certificates are useful in
the "chain" validation model. Usually we use the "shell" model where
expiration dates have an obvious meaning. For German qualified
signatures the "chain" model is required. Basically, it compares the
expiration date to the date given in the signatures.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic