Email 您可以手动将注释添加到PGP公钥块中而不破坏它吗?
假设以下内容是有效的PGP公钥块:Email 您可以手动将注释添加到PGP公钥块中而不破坏它吗?,email,encryption,public-key-encryption,pgp,openpgp,Email,Encryption,Public Key Encryption,Pgp,Openpgp,假设以下内容是有效的PGP公钥块: -----BEGIN PGP PUBLIC KEY BLOCK----- UBStcXNLrrB3CTV429OmCB35xiYZNCckQZ8LQ+RkcIetcWUTY5n4oYn+3WGGTvv6 ALCiRIKQgCjV9wFawAUAIPn4Otq+amdvmQYbCTgvWxxpZLHNu2Ixc2z0XsUnKRF3 7Ar3BK0Y72430x4XNtgxePKSeM6yChXyJ5NMGLf7zYBs3al+dpa8HxiWZwyaslRF
-----BEGIN PGP PUBLIC KEY BLOCK-----
UBStcXNLrrB3CTV429OmCB35xiYZNCckQZ8LQ+RkcIetcWUTY5n4oYn+3WGGTvv6
ALCiRIKQgCjV9wFawAUAIPn4Otq+amdvmQYbCTgvWxxpZLHNu2Ixc2z0XsUnKRF3
7Ar3BK0Y72430x4XNtgxePKSeM6yChXyJ5NMGLf7zYBs3al+dpa8HxiWZwyaslRF
moZ3GljtkcRYiVTvDdROwItP
=G3b9
-----END PGP PUBLIC KEY BLOCK-----
我是否可以手动添加注释,如下图所示——例如,使用vim——并且仍然有效?
我知道我可以重新运行gpg(1)
命令来完成这项工作,但我手头没有
-----BEGIN PGP PUBLIC KEY BLOCK-----
Comment: Hello, World!
UBStcXNLrrB3CTV429OmCB35xiYZNCckQZ8LQ+RkcIetcWUTY5n4oYn+3WGGTvv6
ALCiRIKQgCjV9wFawAUAIPn4Otq+amdvmQYbCTgvWxxpZLHNu2Ixc2z0XsUnKRF3
7Ar3BK0Y72430x4XNtgxePKSeM6yChXyJ5NMGLf7zYBs3al+dpa8HxiWZwyaslRF
moZ3GljtkcRYiVTvDdROwItP
=G3b9
-----END PGP PUBLIC KEY BLOCK-----
谢谢。是的,这是有效的
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: SKS 1.1.6+
Comment: Hostname: pgp.key-server.io
如上所述,注释和版本标签都是经常使用的,包括其他标签,根据允许的标题键包括:
- "Version", which states the OpenPGP implementation and version
used to encode the message.
- "Comment", a user-defined comment. OpenPGP defines all text to
be in UTF-8. A comment may be any UTF-8 string. However, the
whole point of armoring is to provide seven-bit-clean data.
Consequently, if a comment has characters that are outside the
US-ASCII range of UTF, they may very well not survive transport.
- "MessageID", a 32-character string of printable characters. The
string must be the same for all parts of a multi-part message
that uses the "PART X" Armor Header. MessageID strings should be
unique enough that the recipient of the mail can associate all
the parts of a message with each other. A good checksum or
cryptographic hash function is sufficient.
The MessageID SHOULD NOT appear unless it is in a multi-part
message. If it appears at all, it MUST be computed from the
finished (encrypted, signed, etc.) message in a deterministic
fashion, rather than contain a purely random value. This is to
allow the legitimate recipient to determine that the MessageID
cannot serve as a covert means of leaking cryptographic key
information.
- "Hash", a comma-separated list of hash algorithms used in this
message. This is used only in cleartext signed messages.
- "Charset", a description of the character set that the plaintext
is in. Please note that OpenPGP defines text to be in UTF-8. An
implementation will get best results by translating into and out
of UTF-8. However, there are many instances where this is easier
said than done. Also, there are communities of users who have no
need for UTF-8 because they are all happy with a character set
like ISO Latin-5 or a Japanese character set. In such instances,
an implementation MAY override the UTF-8 default by using this
header key. An implementation MAY implement this key and any
translations it cares to; an implementation MAY ignore it and
assume all text is UTF-8.
谢谢你。你可以在事后再加上这些,对吗?@nycyes,是的!许多密钥服务器会将其注释添加到未提交的密钥中。记住,尽管按照RFC,铠装的全部目的是提供七位干净的数据。因此,如果注释中的字符超出了UTF的US-ASCII范围,那么它们很可能无法在传输中存活。啊,好的。我注意到在将密钥上传到SKS服务器时插入了注释。再次感谢您的澄清和回答。标记为已回答。我最初的问题的原因是我想添加该键对应的电子邮件地址作为其
注释
;因为PGP搜索服务器有时响应速度非常慢,并且经常超时。我想知道添加相关的电子邮件地址作为评论是否存在安全隐患?很高兴为您提供帮助。我不明白为什么这会是一种危险。我看你的想法没有问题!不管怎样,公钥通常与某个电子邮件地址相关联。这样评论不是一个问题。