gpg.conf: enable TOFU

This commit is contained in:
Aminda Suomalainen 2019-12-06 23:23:36 +02:00
parent 9026e8035d
commit fd93def2f3
Signed by: Mikaela
GPG Key ID: 99392F62BAE30723
2 changed files with 22 additions and 0 deletions

View File

@ -78,3 +78,14 @@ no-comments
# Don't output version, small chance of having people put same keys on IPFS
no-emit-version
# Trust On First Use (marginal trust) with WoT being full trust. I find this
# less annoying in KMail than only WoT or the comment below, and I think it
# may be additional motivation for me to actually sign the keys I trust with
# all keyservers hiding signatures and gpg not importing them.
# I think `keybase pgp pull` also helps here as the people I am tracking
# there are going to be in my keyring, however it's still a centralized
# service.
trust-model tofu+pgp
# WoT with TOFUs conflict detection, but without positive trust
#tofu-default-policy unknown

View File

@ -78,3 +78,14 @@ no-comments
# Don't output version, small chance of having people put same keys on IPFS
no-emit-version
# Trust On First Use (marginal trust) with WoT being full trust. I find this
# less annoying in KMail than only WoT or the comment below, and I think it
# may be additional motivation for me to actually sign the keys I trust with
# all keyservers hiding signatures and gpg not importing them.
# I think `keybase pgp pull` also helps here as the people I am tracking
# there are going to be in my keyring, however it's still a centralized
# service.
trust-model tofu+pgp
# WoT with TOFUs conflict detection, but without positive trust
#tofu-default-policy unknown