-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 19.01.16 19:50, Doug Barton wrote: > On 01/19/2016 09:16 AM, Patrick Brunschwig wrote: >> On 19.01.16 04:36, Doug Barton wrote: >>> I switched to a more recent nightly build tonight, and got >>> this helpful piece of advice: >> >>> Your key [...] will expire in less than 30 days. >> >>> We recommend that you create a new key pair and configure the >>> corresponding accounts to use the new key >> >>> I'm not sure where the idea that keys who are close to their >>> expiry date should be scrapped and replaced came from, but it's >>> something we need to stomp out, not encourage. >> >>> Instead, the advice should be to extend (or better yet, >>> eliminate) the expiry, and republish to the key servers. >> >> I don't agree to your statement. If you create a key in Enigmail, >> it is valid for 5 years by default. I consider it good practice >> to replace a key after this period. > > Why? > >> If you are an advanced user, you can also create new subkeys, but >> that's not the target audience I have in mind with this warning. > > I agree that we should not be advocating new subkeys for > un-advanced users. > >> And I am strongly against completely deleting the expiry date >> from a key. This is the opposite of what I would want to propose >> to the users. >> >>> Meanwhile, there is a problem with the routine itself ... they >>> key in question has already expired. I'm not sure if that's a >>> problem with the detection code, or if there is simply no >>> message other than the one presented. But either way it should >>> be fixed. >> >> The check is ignorant to keys that have already expired but are >> still configured. The message is only shown if upon upgrading to >> v1.9 such a configuration exists. I decided that I leave the >> message in its pretty simple form because the code would get >> significantly more complex if I'd have to solve this properly for >> a pretty small benefit. > > Avoiding user confusion is not a small benefit. :) But you also > answered another question about how often the check is run, so > thanks.
Not exactly -- I don't think you can derive this from my answer ;-). The every time you start Thunderbird. But it will only warn you once for each key (unless you move the expiry time further to the future), which is why you should not see it too frequently. - -Patrick -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJWomSAAAoJENsRh7ndX2k7wNsP/2QCZnzlFANw7FYSW6+KRYuV q3MhOVtOA1UBIvLq6UCscitumndOg6sA0hyTCxE92vkd/sbZxC6mGIRT5FkC5i6b F1RLWOPhBr+DXT/ZfeYjnDNidw5H9mPjJACarsOl3SgVHPK1Vm16y3Kqkj9CccvI a+OGTDt+hvJII5cof9GbAz8VYNdHrYfxZdrDftxe7NJwLv2d6SNP37CVhZdctNzB 5kQ1oKkivQGFfLUXPxKaD19/KMtbPVlRpKguCSygoCqG++QzRxWvnTzHiMEQU7KT hcvdXt0OTTlahsmo2APyml5erjcWFKWAD126MO9fDhGt/zPkbZg4OftpxwJdghUb B/rAbNcPEjRW8BiZVMZbn1xNudJjgE0FZ5IMxZtfGTQa4r5Af24NYUBTCGKV4FSp WPhnvyN3sT2ss97EmrWn6sVQxI6WOXNOoP3CLadN4GXPatmPqSHYap/wz9BEA0XO bHEMWuJQlM3nlYrrrBLPxt5gFK0zRejBgCtY563QyvF44xMoN2GahvzXg7JzzKqY gA8Z8ZrBmvK1At2q4MaDME7L7lwjOpSfa56mTBtL3fB3lcGbDXCuQGJaB0ey2i8o aU1qRvLkDKfX1C2+ovvMP74/tsmXJZQ40NwFqNOtvHEPvzYWM7xed2ptTE9K2wj6 1OcKEIcwvtDqjE1jrQ6P =q0gO -----END PGP SIGNATURE----- _______________________________________________ enigmail-users mailing list [email protected] To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
