Mikaela
/
shell-things
mirror of https://gitea.blesmrt.net/mikaela/shell-things.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

gpg.conf: no keyserver options, document confusion

This commit is contained in:
Aminda Suomalainen 2019-12-06 20:22:32 +02:00
parent 77344b444e
commit a79c183f86
Signed by: Mikaela
GPG Key ID: 99392F62BAE30723
2 changed files with 18 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
.mikaela/gpg.conf
View File

@ -25,11 +25,15 @@ default-key 0x99392F62BAE30723
# WTOP
#default-key 0xDC189FE6FA9BD685
# Ignore preferred keyserver, remove signatures from keys not in keyring
# import clean as it may be better for WoT than self-sigs-only and I
# am not setting import/export options in fear of removing signatures
# useful to other people in public keys that multiple people are touching.
keyserver-options no-honor-keyserver-url import-clean
# Ignore preferred keyserver
keyserver-options no-honor-keyserver-url
# The defaults are apparently self-sigs-only,import-clean starting from
# gpg 2.2.17, but there seem to be controversial views on them and I am
# not sure what way to go, so I am opting to trust the distribution.
# Debian uses self-sigs-only (while I would be fine with import-clean)
# * https://dev.gnupg.org/T4628#128513
# Arch Linux reverts the change going by no-self-sigs-only,no-import-clean
# * https://bugs.archlinux.org/task/63147
# Try to automatically find keys from local/wkd if key for email address isn't found, but we are encrypting to email address.
auto-key-retrieve

14
gpg/gpg.conf
View File

@ -25,11 +25,15 @@
# WTOP
#default-key 0xDC189FE6FA9BD685 # MIKAELA_GREP # MIKAELA_GREP_GPG
# Ignore preferred keyserver, remove signatures from keys not in keyring
# import clean as it may be better for WoT than self-sigs-only and I
# am not setting import/export options in fear of removing signatures
# useful to other people in public keys that multiple people are touching.
keyserver-options no-honor-keyserver-url import-clean
# Ignore preferred keyserver
keyserver-options no-honor-keyserver-url
# The defaults are apparently self-sigs-only,import-clean starting from
# gpg 2.2.17, but there seem to be controversial views on them and I am
# not sure what way to go, so I am opting to trust the distribution.
# Debian uses self-sigs-only (while I would be fine with import-clean)
# * https://dev.gnupg.org/T4628#128513
# Arch Linux reverts the change going by no-self-sigs-only,no-import-clean
# * https://bugs.archlinux.org/task/63147
# Try to automatically find keys from local/wkd if key for email address isn't found, but we are encrypting to email address.
auto-key-retrieve