The GPG keysigning process is one fraught with pitfalls and corner cases which need to be handled in a consistent and careful way. However people often end up promising a large amount of keysigning (for example if they visit a key signing party) and thus end up with a lot of work to do at the end of the day. This tends to result in a lot of broken promises as other things get in the way of the solid chunk of time needed to process the keysigning results.
The most common product of a keysigning party is a list of fingerprints of keys which you are confident you want to sign. The purpose of these scripts is to make it easy to take and maintain a list of fingerprints you have identified and to make it possible to go back and re-sign uids people add etc.
Common pitfalls in signing scripts include issues with uid duplication (solved in more modern gpg implementations) and problems with scripts not realising that uids are either already signed or have been revoked.
These scripts attempt to answer these questions/issues to my personal satisfaction and are being provided at no charge, and with NO WARRANTY to the public for its use.
There is currently no "release" of this software and it has no direct licencing terms included in the repository currently. I use the onak keyserver source as part of the keysigning scripts and that source code is under its own licence. Unless you otherwise discover in the source code, assume that the contents are under the MIT Licence and are Copyright Daniel Silverstone, 2004-2005.
Note: If you do not have bazaar (baz) installed, you may need to change the below guidelines (and possibly do-build.sh) to use tla. Of course, tla may not be able to read the bazaar archive format so you might have to give up entirely. Just get bazaar, it's nice.
# Assuming you have baz, curl, gpg etc... $ baz register-archive http://arch.digital-scurf.org/arch-pqm@digital-scurf.org $ curl http://arch.digital-scurf.org/arch-pqm@digital-scurf.org.pub | gpg --import $ baz get arch-pqm@digital-scurf.org/dists--keysigning--0 keysigning $ cd keysigning $ ./do-build.sh # ... time passes as stuff is downloaded, signkey is built, etc ... $ cd ksp-tools # look at the README... the process is approximately $ gpg --export MY64BITKEYID > 64BITKEYID.key $ vi Makefile # In there, set MYKEY=64BITKEYID $ vi signuid # In there change the emails/names to match you requirements $ vi signing.input # Fill it out as according to the format in the README $ make clean && make locate $ make xref $ less signing.xref # As appropriate, you may need to alter the GPG_CMD stuff in makefile $ make gensign && make dosign $ cd mails $ for I in *; do /usr/lib/sendmail -t <$I; done<<