Publishing GPG Public Key in DNS Records

Posted on February 9, 2010 by Jeff Fitzsimons

Publishing GPG/PGP keys to public keyservers has one glaring fault: once you commit something, you can never remove it. I made the mistake of adding my email address at an employer’s domain. Now it is permanently tied to my public key and email address.

Assuming that you own a domain, publishing keys in your DNS record gives you complete control over their content. Of course, there is nothing stopping someone from retrieving your public key from your DNS record and uploading it to a public keyserver!

Dan Mahoney wrote an excellent guide on publishing PGP keys in DNS TXT records.

This guide to GoDaddy DNS record configuration made it relatively easy to modify my TXT record.

About Jeff Fitzsimons

Jeff Fitzsimons is a software engineer in the California Bay Area. Technical specialties include C++, Win32, and multithreading. Personal interests include rock climbing, cycling, motorcycles, and photography.
This entry was posted in Network, Security, Technology. Bookmark the permalink.

One Response to Publishing GPG Public Key in DNS Records

  1. Dan Mahoney says:
    November 19, 2011 at 5:16 pm

    Thanks for the mention!

Leave a Reply

Your email address will not be published. Required fields are marked *