Changes between Version 1 and Version 2 of debug-server-to-server-connections


Ignore:
Timestamp:
May 8, 2014, 1:23:44 PM (11 years ago)
Author:
Jamie McClelland
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • debug-server-to-server-connections

    v1 v2  
    3535gpg --keyserver keys.mayfirst.org --send-key <keyid>
    3636}}}
    37 Then, refresh the key on the target (see above).
     37 Then, refresh the key on the target (see above).
    3838 * The connecting server's OpenPGP key is expired. Fix: extend it:
    3939{{{
    4040mf-gpg-extend-root-expiration
    4141}}}
    42 (This will also publish it). Then, refresh the key on the target (see above)
     42 (This will also publish it). Then, refresh the key on the target (see above)
     43 * The connecting server's has not been certified by an allowed key (or the certification has expired). Fix: On the connecting server, refresh the key's certifications:
     44{{{
     45gpg --recv-key <keyid>
     46}}}
     47 Then, list the certifications:
     48{{{
     49gpg --check-sigs <keyid>
     50}}}
     51 Then, on the target server, see if any of them match the allowed certifiers:
     52{{{
     53monkeysphere-authentication list-id-certifiers
     54}}}
     55 If not, get someone on the allowed list to sign the key, then run the step for ensuring the target server has the lastest version of the connecting servers OpenPGP key.