Does anyone know an existing tool or set of tools that will allow me to generate lesser-used types of #PGP signatures, such as 0x1F (direct key signature) and 0x50 (third party confirmation), and add them to keys? I'm in an experimental mood.
More #PGP weirdness: why are trust signatures attached to one or more UIDs, rather than to the key itself? The whole point of a trust signature is that you are vouching for certs made by the key. UIDs don't issue certs.
Given that pretty much every #PGP user should and will change master keys at some point, it's kind of astonishing that there's no standard in-band mechanism for doing that and we have to resort to out-of-band "transition statements" and manual keyring management.
Just published a working DNS CERT record for my #PGP key. There is basically no good documentation on how to do this, which is a shame because it really wasn't that hard (if you're the sort of person who would do it in the first place) and seems easy enough to automate. I might release a script/howto if I ever get around to it.
"I appreciate SDF but it's a general-purpose server and the name doesn't make it obvious that it's about art." - Eugen Rochko