How do I deploy my own GPG keyserver?


I would like to set up a read-only key-server operating by me where I am going to publish my own keys. So that anyone could do gpg --keyserver --receive-keys 0xDEADBEEF and get the key. Is it some sort of HTTP server? Is it enough to just put static files and serve them via Apache? If so, in which directories they should be located?

I do not like that I cannot make any changes of my key on so-called public key-server network. However, it would be nice to support a GnuPG compatible protocol to share the key.

asked on Server Fault Dec 4, 2020 by mymedia

2 Answers


There are many keyserver implementations available like Honeypuck.

answered on Server Fault Dec 5, 2020 by Brian Lyttle

The sequoia-pgp team built Hagrid the "keeper of keys". It is written in Rust and is based on Sequoia-pgp which itself is a an OpenPGP Library.

I did not deploy an instance yet, due to lack of time, but it might be a solution to your requirements. It is already running on

answered on Server Fault Dec 6, 2020 by sbstrkt

User contributions licensed under CC BY-SA 3.0