On Mon, 27 Aug 2001 12:35:40 -0400, David Shaw said:
to really revoke a revocation. I assume you mean revoking a user ID
revocation by re-signing the user ID?
Yes. I talked with Florian about this recently.
I'm only trying to make a case for what happens if after everything is
worked out and the implementation ends up with more than one valid
There shouldn't be any date conflicts with self-signatures - but it
may happen. The way to handle it for a general purpose implemention is
to ignore all signatures during key import which are older than
existing one. That you ignore all self-signatures which are invalid
should be clear.
So I do not see a problem before the year 2106 and most of us won't see
Werner Koch Omnis enim res, quae dando non deficit, dum habetur
g10 Code GmbH et non datur, nondum habetur, quomodo habenda est.
Privacy Solutions -- Augustinus