我正在尝试为系统帐户添加信任(用于在使用该密钥加密数据时停止唠叨消息).我有子键设置和离线主键:
$ gpg --edit-key AAAAAAAA
[...]
Secret key is available.
pub 4096R/AAAAAAAA created: 2015-09-09 expires: never usage: SC
trust: ultimate validity: ultimate
sub 4096R/BBBBBBBB created: 2015-09-09 expires: never usage: E
sub 4096R/CCCCCCCC created: 2015-09-09 expires: never usage: S
sub 4096R/DDDDDDDD created: 2015-09-09 expires: never usage: A
$ gpg --list-secret-keys
sec# 4096R/AAAAAAAA 2015-09-09
uid $NAME <$EMAIL>
ssb 4096R/BBBBBBBB 2015-09-09
ssb 4096R/CCCCCCCC 2015-09-09
ssb 4096R/DDDDDDDD 2015-09-09
如果我想签署一份文件我可以使用:
$ gpg --encrypt --sign --recipient AAAAAAAA --local-user CCCCCCCC! --output out.gpg in.gpg
它使用完全指定的子键进行签名(尽管在这种情况下,AAAAAAAA实际上不可用,因此无论如何都不能使用它).但是,如果我尝试做类似于另一个UID的操作:
$ gpg --lsign-key …gnupg ×1