signing-party - Various OpenPGP related tools

Distribution: Ubuntu 16.04 LTS (Xenial Xerus)
Repository: Ubuntu Universe i386
Package name: signing-party
Package version: 2.2
Package release: 1
Package architecture: i386
Package type: deb
Installed size: 500 B
Download size: 153.59 KB
Official Mirror:
signing-party is a collection for all kinds of PGP/GnuPG related things, including tools for signing keys, keyring analysis, and party preparation. * caff: CA - Fire and Forget signs and mails a key * pgp-clean: removes all non-self signatures from key * pgp-fixkey: removes broken packets from keys * gpg-mailkeys: simply mail out a signed key to its owner * gpg-key2ps: generate PostScript file with fingerprint paper slips * gpgdir: recursive directory encryption tool * gpglist: show who signed which of your UIDs * gpgsigs: annotates list of GnuPG keys with already done signatures * gpgparticipants: create list of party participants for the organiser * gpgwrap: a passphrase wrapper * keyanalyze: minimum signing distance (MSD) analysis on keyrings * keylookup: ncurses wrapper around gpg --search * sig2dot: converts a list of GnuPG signatures to a .dot file * springgraph: creates a graph from a .dot file * keyart: creates a random ASCII art of a PGP key file * gpg-key2latex: generate LaTeX file with fingerprint paper slips



  • keyanalyze
  • sig2dot
  • springgraph


    Source package: signing-party

    Install Howto

    1. Update the package index:
      # sudo apt-get update
    2. Install signing-party deb package:
      # sudo apt-get install signing-party


    • /usr/bin/caff
    • /usr/bin/gpg-key2latex
    • /usr/bin/gpg-key2ps
    • /usr/bin/gpg-mailkeys
    • /usr/bin/gpgdir
    • /usr/bin/gpglist
    • /usr/bin/gpgparticipants
    • /usr/bin/gpgparticipants-prefill
    • /usr/bin/gpgsigs
    • /usr/bin/gpgwrap
    • /usr/bin/keyanalyze
    • /usr/bin/keyart
    • /usr/bin/keylookup
    • /usr/bin/pgp-clean
    • /usr/bin/pgp-fixkey
    • /usr/bin/pgpring
    • /usr/bin/process_keys
    • /usr/bin/sig2dot
    • /usr/bin/springgraph
    • /usr/share/doc/signing-party/NEWS.Debian.gz
    • /usr/share/doc/signing-party/NEWS.keylookup.gz
    • /usr/share/doc/signing-party/README.sig2dot
    • /usr/share/doc/signing-party/README.springgraph
    • /usr/share/doc/signing-party/changelog.Debian.gz
    • /usr/share/doc/signing-party/copyright
    • /usr/share/doc/signing-party/caff/README
    • /usr/share/doc/signing-party/caff/README.gpg-agent
    • /usr/share/doc/signing-party/caff/README.many-keys
    • /usr/share/doc/signing-party/caff/README.v3-keys
    • /usr/share/doc/signing-party/caff/caffrc.sample
    • /usr/share/doc/signing-party/examples/gpgsigs/gpgsigs-lt2k5-annotated.txt
    • /usr/share/doc/signing-party/examples/gpgsigs/gpgsigs-lt2k5.txt
    • /usr/share/doc/signing-party/examples/keyanalyze/
    • /usr/share/doc/signing-party/examples/keyanalyze/scripts/1000_bottom.php
    • /usr/share/doc/signing-party/examples/keyanalyze/scripts/1000_top.php
    • /usr/share/doc/signing-party/examples/keyanalyze/scripts/htmlify_report
    • /usr/share/doc/signing-party/examples/keyanalyze/scripts/report_bottom.php
    • /usr/share/doc/signing-party/examples/keyanalyze/scripts/report_top.php
    • /usr/share/doc/signing-party/examples/keyanalyze/scripts/
    • /usr/share/doc/signing-party/examples/keyanalyze/scripts/top50comments.txt
    • /usr/share/doc/signing-party/examples/keyanalyze/willy/README
    • /usr/share/doc/signing-party/examples/keyanalyze/willy/cosign
    • /usr/share/doc/signing-party/examples/keyanalyze/willy/msd2html
    • /usr/share/doc/signing-party/examples/keyanalyze/willy/non-recip
    • /usr/share/doc/signing-party/examples/keyanalyze/willy/
    • /usr/share/doc/signing-party/examples/keyanalyze/willy/report
    • /usr/share/doc/signing-party/examples/keyanalyze/willy/sigids
    • /usr/share/doc/signing-party/examples/keyanalyze/willy/unsign
    • /usr/share/doc/signing-party/examples/keyart/
    • /usr/share/doc/signing-party/keyart/README
    • /usr/share/doc/signing-party/keyart/druken-bishop.txt.gz
    • /usr/share/doc/signing-party/keyart/party-worksheet
    • /usr/share/lintian/overrides/signing-party
    • /usr/share/man/man1/caff.1.gz
    • /usr/share/man/man1/gpg-key2latex.1.gz
    • /usr/share/man/man1/gpg-key2ps.1.gz
    • /usr/share/man/man1/gpg-mailkeys.1.gz
    • /usr/share/man/man1/gpgdir.1.gz
    • /usr/share/man/man1/gpglist.1.gz
    • /usr/share/man/man1/gpgparticipants-prefill.1.gz
    • /usr/share/man/man1/gpgparticipants.1.gz
    • /usr/share/man/man1/gpgsigs.1.gz
    • /usr/share/man/man1/gpgwrap.1.gz
    • /usr/share/man/man1/keyanalyze.1.gz
    • /usr/share/man/man1/keyart.1.gz
    • /usr/share/man/man1/keylookup.1.gz
    • /usr/share/man/man1/pgp-clean.1.gz
    • /usr/share/man/man1/pgp-fixkey.1.gz
    • /usr/share/man/man1/pgpring.1.gz
    • /usr/share/man/man1/process_keys.1.gz
    • /usr/share/man/man1/sig2dot.1.gz
    • /usr/share/man/man1/springgraph.1.gz


    2015-12-15 - Guilhem Moulin <> signing-party (2.2-1) unstable; urgency=low * caff: + "gpgparticipants"-formated input: accept key blocks not starting with a number such as [x] Fingerprint(s) OK [x] ID OK This makes caff able to process the Debconf 15 KSP file. (Closes: #797714) * gpglist: + Don't prune revoked UIDs with a subsequent selfsig. (Closes: #796664) + Add an option '--show-revoked' to show revoked UIDs. Thanks Tomasz Buchert for the patch. + Mention in the manpage that the path to the gpg binary is taken from the GNUPGBIN environment variable, if defined.

    2015-08-08 - Guilhem Moulin <> signing-party (2.1-1) unstable; urgency=low * caff: + Only consider non-expired/invalid/revoked keys and UIDs when generating the caffrc. + Proper RFC 5322 validation of email addresses. Currently gpg(1) only accepts a subset of RFC 5322-valid addresses (unless --allow-freeform-uid is set). caff is now able to extract the email address from any UID of the form "addr-spec" or "[phrase] <addr-spec>" with a RFC 5322-valid addr-spec. + Prefix the signature by "-- \n" in the email template. + Automatically mkdir ~/.caff if it doesn't exit. Regression introduced in r776. (Closes: #786933)

    2015-04-14 - Guilhem Moulin <> signing-party (2.0-1) unstable; urgency=low * caff: + Fix broken compatibility with GnuPG 2.1 (2.1.3 and later only; earlier 2.1.x versions remain unsuported), due to --secret-keyring being ignored by the most recent gpg(1). On those we automaticalyl symlink the S.gpg-agent (unless 'no-sign') and S.dirmngr (unless 'no-download') sockets to avoid spawning new agents in caff's GNUPGHOME. This require an extra call to gpg(1) at the beginning to determine the version. (Closes: #771857) + Default $CONFIG{'local-user'} to $CONFIG{'keyid'} rather than importing the public part of *all* keys found in the secret keyring. (When not pruning the good keys with -u, gpg(1) croaks with exit status 2 when there are secret keys without public part.) + Print {error,warnings,notice,info} lines on STDERR. + Add a --debug flag to enable debug messages. + Deprecate $CONFIG{'gpg-sign'} and $CONFIG{'gpg-delsig'}. + Never redirect STDERR. Send the logger output to /dev/null instead (unless in debug mode). (Closes: #775702) + Send attachements and non RFC 2822 UIDs to *all* signed addresses, not only those for which the UID is exported. This is useful when the signee has some already signed RFC 2822 UIDs and a freshly added attribute, for instance. + Use Term::ANSIColor to produce fancy colored output. Can be configured by setting $CONFIG{colors} to a suitable hash; in particular setting $CONFIG{colors} = {} reverts to the old uncolored output. + Prune keys with import-{clean,minimal} not export-{clean,minimal}. + Fix $CONFIG{'also-lsign-in-gnupghome'}: local signatures are directly imported from caff's GNUPGHOME to our own; in auto-lsign'ing mode, lsign UID for which we have an exportable signature (preserving the signer and cert level). + Pass the 'keyserver-options' specified in ~/.gnupg/gpg.conf to $CONFIG{keyserver} when it is left unset. (Closes: #780836) * gpgsigs: + Add a legend with the different signature types. + Mark local signatures as 'L' (formerly they were marked as 'S'), and expiring -- but not expired -- signatures as 'x'. * caff, pgp-clean, pgp-fixkey, gpg-key2latex, gpg-key2ps, gpg-mailkeys, gpgdir, gpgparticipants, gpgsigs, keyart, keylookup: + Add the possibility to choose the gpg binary via the "GNUPGBIN" environment variable. (Default: "gpg".)