Robert J. Hansen: > It would be nice if Enigmail could keep track of the last time the > keyring was refreshed -- or, more accurately, the last time Enigmail > refreshed the keyring. Then, every 30 days, Enigmail could prompt the > user for: > > "It's been a month since your keyring has been updated. > Would you like to update it now?" > > With options of 'Yes', 'Ask Me Later', and 'Stop Asking'. If the user > clicks 'Yes', it runs gpg2 --refresh. > > This would potentially help out *a lot* with the problem of people > continuing to use expired, revoked, or otherwise discarded certificates.
Refreshing a full keyring has the downside that it exposes the entire keyring at once to the keyserver. I know GnuPG doesn't try very hard to hide metadata, but this one expose the social graph in a quite identifying manner as it's unlikely that two users will have the same keys in their keyring. These are the concerns that lead to the design of Parcimonie: https://sources.debian.net/src/parcimonie/0.9-3/design.mdwn/ Could Enigmail reuses some of these ideas? Or warn users that it might be a problem? Or at the very least this could be disabled when TorBirdy is installed. -- Lunar .''`. [email protected] : :Ⓐ : # apt-get install anarchism `. `'` `-
signature.asc
Description: Digital signature
_______________________________________________ enigmail-users mailing list [email protected] To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
