Julien Sansonnens | 19 Jun 08:18 2016
Picon

pgpkeys.ch back to normal

Hi, 

pgpkeys.ch sks server experienced some troubles for the last two days. 
Everything should be back to normal now, server has been reinstalled. 

Thank you to inform me of any problems with pgpkeys.ch.

Of course I would like to peer with other servers, feel free to add me and I will add you. 

pgpkeys.ch 11370 # Julien Sansonnens <julien <at> jsansonnens.ch> 0xb8dfc96d9233ded0

Sorry for the inconvenience.
Julien Sansonnens
<div><div dir="ltr">Hi,&nbsp;
<div><br></div>
<div>
<a href="http://pgpkeys.ch">pgpkeys.ch</a> sks server experienced some troubles for the last two days.&nbsp;</div>
<div>Everything should be back to normal now, server has been reinstalled.&nbsp;</div>
<div><br></div>
<div><span>Thank you to inform me of any problems with <a href="http://pgpkeys.ch">pgpkeys.ch</a>.</span></div>
<div><br></div>
<div>Of course&nbsp;<span>I would like to peer with other</span><span>&nbsp;servers, feel free to add me and I will add you.&nbsp;</span>
</div>
<div><br></div>
<div>
<a href="http://pgpkeys.ch/" rel="noreferrer" target="_blank"><span class="">pgpkeys</span>.<span class="">ch</span></a><span>&nbsp;11370 # Julien Sansonnens &lt;</span><a href="mailto:julien@..." target="_blank">julien <at> jsansonnens.<span class="">ch</span></a><span>&gt; 0xb8dfc96d9233ded0</span>
</div>
<div>
<br><span>Sorry for the inconvenience.</span><br>Julien Sansonnens</div>
</div></div>
Fabian Santiago | 16 Jun 20:42 2016

SRV (NA) on sks-keyservers status pages

what exactly do the different columns on the status page mean and further, what does it mean that my server has 0 for SRV (NA)? but EU and OC have values.


- Fabian S.


<div>
    <p>what exactly do the different columns on the status page mean and
      further, what does it mean that my server has 0 for <span>SRV (NA)?
        but EU and OC have values. <br></span></p>
    <p><span><br></span></p>
    <p><span>- Fabian S.</span></p>
    <p><span><br></span></p>
  </div>
Fabian Santiago | 14 Jun 18:13 2016

Key dump initial load


When I did my most recent key dump load in, I did not have a working conf file yet. All parameters are default
aside from what pertains to me and my servers identity.

Should I worry about this and now that I have a working conf, re-import a new key dump?

Thanks.
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
Hillebrand van de Groep | 14 Jun 16:56 2016
Picon

Re-requesting peers for pgpkeyserver.nl (formerly known as keyserver.flippylosaurus.EU)


Hello there. I'd like to re-request peers for my keyserver as I have changed the web address. My membership
line is:

pgpkeyserver.nl 11370 # hillebrand@...
<hillebrand@...> 0x20EBC59A

My server is in the pool, although I need to request the SSL key to be signed. The server is located in
Amsterdam with a theoretical speed of 1000/1000, although it is 600 up/800 down most of the time.
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
Hillebrand van de Groep | 13 Jun 16:56 2016
Picon

Important announcement for those peering with keyserver.flippylosaurus.eu


(if you have also received this message outside of the sks-devel mailing list, you are in my membership list
and this message should be treated as personal.)

The keyserver at keyserver.flippylosaurus.eu will move to pgpkeyserver.nl. This move will happen on
Wednesday June 15th, 20:00 GMT +2. To account for timezones, keyserver.flippylosaurus.eu and
pgpkeyserver.nl will connect to the same server. pgpkeyserver.nl is currently active, and
keyserver.flippylosaurus.eu will be too for months to come.

On the previously noted date I will assume all peers have changed the entry in their membership file.

My new membership line will be:

pgpkeyserver.nl 11370 # Hillebrand van de Groep
<hillebrand@...> 0x20EBC59A

Please reply if you have changed the line to my private email address.

--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
Fabian Santiago | 13 Jun 16:13 2016

stats page does not persist thru restarts?


Does the stats page not persist thru restarts / server reboots? That is
my observed behavior.

--

-- 
--

Sincerely,

Fabian S.
Hillebrand van de Groep | 13 Jun 11:47 2016
Picon

keyserver.flippylosaurus.eu back in service after unexpected downtime


There was a apache update which slightly messed up my configs. SSL should also be working as I'm now using a
Let's Encrypt certificate with multiple SAN's.

Peering requests are - as always welcome. Send me a PGP-encrypted mail to hillebrand@...
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
Kiss Gabor (Bitman | 13 Jun 10:05 2016
Picon

hkps certificates

Dear folks,

Let's start thinking about how to issue HKPS certificates in the future.
I'm afraid Kristian is too busy to do this.

First: I don't know exactly if sks-keyservers.net CA certificate
is hardwired into HKPS clients or not? Is it possible to
change it? Is is possible add more root certificates?
If yes, we could set up an alternate chain of signatures
and we can keep the level of HKPS service for users who need it.

Another possible solution: Kristian delegates his authority.

Regards

Gabor

Fabian Santiago | 11 Jun 08:45 2016

Sks_add_mail / wrong permissions


Hello,

So as I'm sorting thru continued issues (hence my peering request rescindence), I've now encountered an
issue that was asked on the list 3 years ago but never answered on the list;

Postfix sends emails destined for the pgp alias to sks but then sks fails to process it with a permission
error. The add_mail binary writes the file with owner nobody: and mode 600. Sks can't read it.

What gives now?

This and possibly some redirects on nginx appear to be my final hurdles as is changing my from email address
to better conform.

--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
Fabian Santiago | 11 Jun 05:16 2016

Membership peering request


Hello all,

I have setup a new keyserver running centos 7.2.1511 and sks 1.1.5 and reverse proxied by nginx and I would
like to peer with other servers.

My last key dump import was obtained from:

https://pgp.key-server.io/dump/current/

On 6/8/16

If you would be so inclined, please add me to your 'membership' file with the following entry and provide
your details in return so I can do the same:

keyserver.garden-lan.com 11370 # gpg-keys <gpg-keys@...> 0x06629F8884F8CC2F

Thank You.
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
Fabian Santiago | 9 Jun 15:52 2016

Re: couple questions


Hello,

yes i did type out the addresses fully. no joy. the conf file is under
/etc/sks and i even tried (just for grins) moving it to the base dir but
that didn't help.

another question i forgot to ask; on the sks stats page, it shows my
server's actual hostname, rather than the domain name i've pointed to
it. is this ideal or does it not matter?

---
--

Sincerely,

Fabian S.

On 2016-06-09 07:25, Hillebrand van de Groep wrote:
> You are using a full IP address in hkp_address I hope? If it's a v6
> address incapsulate the address with []'s. If its a v4 address just
> type out the address.
> 
> On June 9, 2016 2:16:03 AM GMT+02:00, Fabian Santiago
> <fsantiago@...> wrote:
> 
>> Hello,
>> 
>> i'm trying to setup sks and have a couple questions based on my
>> observed
>> behavior of it. I'm using centos 7.x with sks v1.1.5.
>> 
>> 1.> i placed into the conf file hkp_address: xxxxxxxx, but sks
>> doesn't
>> seem to honor it. it continues to listen on 0.0.0.0 and ::
>> respectively.
>> I want to setup an http reverse proxy using nginx but can't seem to
>> without this.
>> 
>> 2.> how exactly do i enable the usage of sks_add_mail with postfix?
>> 
>> 3.> it doesn't seem to honor disable_mailsync: either as my db.log
>> constantly reports every 10 seconds:
>> 2016-06-08 20:11:38 <mail transmit keys> error in
>> callback.: Failure("No partners specified")
>> 
>> Thanks.
> 
> --
> Sent from my Android device with K-9 Mail. Please excuse my brevity.

Gmane