Simplified GPG key signing
Shell
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Failed to load latest commit information.
.gitignore
README.txt
WTFPL.txt
gpg-options
signet
signet.conf

README.txt

signet aims to ease the process of signing
GPG keys, or rather their individual UIDs.

It behaves in a similar manner to eg. caff,
but has less requirements and fewer configuration
options.

Basically, signet is a shell wrapper around
numerous calls to gpg itself.

GOAL
----
Have an easy way to sign keys on online as well
as airgapped/offline machines, by allowing import 
and export by multiple methods (eg. files,
key servers)

BASIC OPERATION
---------------
signet first queries the PRIVATE_SIGNER_KEYRING
(defaults to ~/.gnupg/secring.gpg) for secret keys 
suitable for signing and lets the user choose the
key she wants to sign with.

In the next step, the keys to be signed are imported
into a temporary keyring via multiple possible imports
(keyserver, exported files, complete keyrings).

Thereafter, UIDs are individually brought before the
user to sign or reject to do so, and then exported
signature for signature into their own files
suitable for emailing to the respective UIDs.

Using gpg-agent to provide the passphrase
only once should work pretty well.

I'll happily receive Problems, bugs, ideas and praise
via email to cb@cbcdn.com :)

Many thanks to neun and sycoso for beta-testing and
pointing out flaws!

UPDATES/SUPPORT
---------------
Updates may be found at github.com/cbdevnet/signet
Bugs, ideas, praise and patches I happily receive
via email to cb@cbcdn.com :)