Hockeypuck OpenPGP Public Keyserver

1. Install with Docker

Probably the simplest way to get up to speed with Hockeypuck is using Docker and docker-compose.

2. Prerequisites

Any host being able to run a somewhat recent version of git and docker-compose is suitable.

3. Install Hockeypuck

git clone
cd hockeypuck
docker-compose build

4. Configure Hockeypuck

Create and edit the configuration file in ./etc/hockeypuck.conf. Use ./contrib/docker-compose/devel/hockeypuck/etc/hockeypuck.conf as a start.

5. Populate and start the service

Create ./keydump/ directory and populate it with a keydump, e.g. from a location listed in the KeydumpSources.

Run the docker images:

docker-compose up -d

This will first import the keydump; expect this to take a day at least. To follow the progress or see error messages, use:

docker-compose logs --follow

6. Make available as HTTPS

The easiest way to make this or any other service available under HTTPS is to use [https-portal]( Clone it in a separate directory, and edit docker-compose.yml to include:

  DOMAINS: | -> http://dockerhost:11371,

You can add more redirects, proxies, and native directories easily by appending it to the DOMAINS environment variable.


Casey Marshall, Marcel Waldvogel