1CAFF(1) User Contributed Perl Documentation CAFF(1)
2
6 caff -- CA - Fire and Forget
7
9 caff [-eEmMRS] [-u yourkeyid] keyid [keyid ..]
10
12 CA Fire and Forget is a script that helps you in keysigning. It takes
13 a list of keyids on the command line, fetches them from a keyserver and
14 calls GnuPG so that you can sign it. It then mails each key to all its
15 email addresses - only including the one UID that we send to in each
16 mail, pruned from all but self sigs and sigs done by you. The mailed
17 key is encrypted with itself as a means to verify that key belongs to
18 the recipient.
19
21 -e, --export-old
22 Export old signatures. Default is to ask the user for each old sig‐
23 nature.
24 -E, --no-export-old
26 Do not export old signatures. Default is to ask the user for each
27 old signature.
28 -m, --mail
30 Send mail after signing. Default is to ask the user for each uid.
31 -M, --no-mail
33 Do not send mail after signing. Default is to ask the user for each
34 uid.
35 -R, --no-download
37 Do not retrieve the key to be signed from a keyserver.
38 -S, --no-sign
40 Do not sign the keys.
41 -u yourkeyid, --local-user yourkeyid
43 Select the key that is used for signing, in case you have more than
44 one key. To sign with multiple keys at once, separate multiple
45 keyids by comma.
46 --key-file file
48 Import keys from file. Can be supplied more than once.
49
51 $HOME/.caffrc - configuration file
52 $HOME/.caff/keys/yyyy-mm-dd/ - processed keys
53 $HOME/.caff/gnupghome/ - caff's working dir for gpg
54 $HOME/.caff/gnupghome/gpg.conf - gpg configuration
55 useful options include use-agent, keyserver-options,
56 default-cert-level, etc.
57
59 The configuration file is a perl script that sets values in the hash
60 %CONFIG. The file is generated when it does not exist.
61 Example:
63 $CONFIG{owner} = q{Peter Palfrader};
65 $CONFIG{email} = q{peter@palfrader.org};
66 $CONFIG{keyid} = [ qw{DE7AAF6E94C09C7F 62AF4031C82E0039} ];
67 Required basic settings
69 owner [string]
71 Your name. REQUIRED.
72 email [string]
74 Your email address, used in From: lines. REQUIRED.
75 keyid [list of keyids]
77 A list of your keys. This is used to determine which signatures to
78 keep in the pruning step. If you select a key using -u it has to
79 be in this list. REQUIRED.
80 General settings
82 caffhome [string]
84 Base directory for the files caff stores. Default: $HOME/.caff/.
85 GnuPG settings
87 gpg [string]
89 Path to the GnuPG binary. Default: gpg.
90 gpg-sign [string]
92 Path to the GnuPG binary which is used to sign keys. Default: what
93 gpg is set to.
94 gpg-delsig [string]
96 Path to the GnuPG binary which is used to split off signatures.
97 This was needed while the upstream GnuPG was not fixed. Default:
98 what gpg is set to.
99 secret-keyring [string]
101 Path to your secret keyring. Default: $HOME/.gnupg/secring.gpg.
102 also-encrypt-to [keyid, or list of keyids]
104 Additional keyids to encrypt messages to. Default: none.
105 gpg-sign-args [string]
107 Additional arguments to pass to gpg. Default: none.
108 Keyserver settings
110 keyserver [string]
112 Keyserver to download keys from. Default: subkeys.pgp.net.
113 no-download [boolean]
115 If true, then skip the step of fetching keys from the keyserver.
116 Default: 0.
117 key-files [list of files]
119 A list of files containing keys to be imported.
120 Signing settings
122 no-sign [boolean]
124 If true, then skip the signing step. Default: 0.
125 ask-sign [boolean]
127 If true, then pause before continuing to the signing step. This is
128 useful for offline signing. Default: 0.
129 export-sig-age [seconds]
131 Don't export UIDs by default, on which your latest signature is
132 older than this age. Default: 24*60*60 (i.e. one day).
133 local-user [keyid, or list of keyids]
135 Select the key that is used for signing, in case you have more than
136 one key. With multiple keyids, sign with each key in turn.
137 Mail settings
139 mail [boolean]
141 Do not prompt for sending mail, just do it. Default: 0.
142 no-mail [boolean]
144 Do not prompt for sending mail. The messages are still written to
145 $CONFIG{caffhome}/keys/. Default: 0.
146 mail-template [string]
148 Email template which is used as the body text for the email sent
149 out instead of the default text if specified. The following perl
150 variables can be used in the template:
151 {owner} [string]
153 Your name as specified in the owner setting.
154 {key} [string]
156 The keyid of the key you signed.
157 {@uids} [array]
159 The UIDs for which signatures are included in the mail.
160 reply-to [string]
162 Add a Reply-To: header to messages sent. Default: none.
163 bcc [string]
165 Address to send blind carbon copies to when sending mail. Default:
166 none.
167 mailer-send [array]
169 Parameters to pass to Mail::Mailer. This could for example be
170 $CONFIG{mailer-send} = [ 'smtp', Server => 'mail.server', Auth => ['user', 'pass'] ]
172 to use the perl SMTP client or
174 $CONFIG{mailer-send} = [ 'sendmail', '-o8' ]
176 to pass arguments to the sendmail program. For more information
178 run "perldoc Mail::Mailer". Setting this option is strongly dis‐
179 couraged. Fix your local MTA instead. Default: none.
180
182 Peter Palfrader <peter@palfrader.org>
183 Christoph Berg <cb@df7cb.de>
184
186 http://pgp-tools.alioth.debian.org/
187
189 gpg(1), pgp-clean(1), /usr/share/doc/signing-party/caff/caffrc.sample.
190perl v5.8.8 2006-11-01 CAFF(1)