I'm trying to work through the documentation on https://www.gnupg.org/documentation, which is largely OK, but I've noticed multiple issues:
1. The gpgsm documentation for the --generate-key command says that it can "either create a certificate signing request (CSR)or an X.509 certificate." However, I've only ever got CSRs from it, and I don't see anything anywhere explaining how to generate a X.509 certificate. 2. The gpgsm documentation says that it supports an --output parameter, yet when I try to use it, the software complains that --output isn't a valid parameter, so I have to use output redirect instead. 3. Incidentally, it's great that gpgsm supports a --batch parameter, which lets me use a parameter file for my CSR. Is there any support to redirected input into gpgsm --generate-key to answer the questions automatically? 4. The FAQs would benefit from updating, as I don't think questions like "Is this the official GnuPG FAQ?" are that "frequently asked." More topically, it has several FAQs discouraging users from using anything longer than RSA-2048, when it now defaults to RSA-3072. I'm surprised it hasn't caused more confusion for newcomers. 5. A problem that took me hours to figure out was how to certify and trust a new user ID in a GPG key. Again, I'm not sure where documentation on this is hiding. It certainly doesn't explain how to use a different signing key to certify the user ID, which is the only way I could control the trust level. Again, the FAQ talks abstractly about what "trust" and "verification" mean, but don't provide any implementation details. 6. I question whether the FAQ's discussion on algorithms in is up-to-date. It gives no mention to ed25519, which I understand is the most reliable ECC cypher. It says that 3DES is still reliable, but I thought all DES-based cyphers were obsolete. I've never seen Camellia offered as a GPG cypher option, so I'm not sure of the relevance of including it. You get the picture. I understand that I need to request an account to file bugs, and I'd probably need a different account to propose changes to the documentation. Are there any quick answers to my questions above? _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users
