On 08/30/2017 05:14 PM, Darshit Shah wrote: > * Unknown PGP keys are always an interesting problem due to the > various differences in how people would like to deal with it. By > default, I would suggest that Wget reports a warning about a missing > key and continues. There would be yet another switch > "--import-missing-keys" which would cause Wget2 to attempt to > contact keyservers and import the key.
Your emailer formats very interesting ;-) Let's extend the warning by a clear command example how to retrieve the missing key. Also there are inflictions when the proper fingerprint isn't known. Is there a way to download a key temporary and throw it away if the signature doesn't match ? Because maybe the content+signature is correct but the downloaded key is wrong... With Best Regards, Tim
signature.asc
Description: OpenPGP digital signature
