On Wed, Oct 16, 2002 at 07:35:01PM +0200, Ren� Clerc wrote: > * PeterKorman <[EMAIL PROTECTED]> [16-10-2002 16:30]: > > > On Wed, Oct 16, 2002 at 03:02:31PM +0200, Ren� Clerc wrote: > > > * Stephane Bortzmeyer <[EMAIL PROTECTED]> [16-10-2002 14:52]: > > > > > > [about PGP signatures] > > > > > > > Or to hide it unless specifically called? > > > > > > unset pgp_verify_sig > > > > In a perfect world, I think I'd want to know only > > if the signature did *NOT* check out against the > > keyserver copy. > > The part of his question I replied to, is the part that doesn't > require a patch for mutt, if I'm correct. I believe my reply is > valid; if you want to hide GnuPG output, then don't verify. > > [...] > > > I'd like to always verify, always fetch > > keys (that are not already on my keychain), but only see > > signature verification failures. Everything else should > > be invisible. Well, maybe a rotating slash to indicate > > fetch activity between me and the keyserver. > > This requires a patch. Or a nifty $display_filter setting. > > Personally, I don't like keyrings with hundreds of keys. So I don't > use the auto-key-retrieve option of gpg. > > If a post to, let's say, mutt-users is signed (like mine are), I > usually don't feel the direct need to verify the signature (exactly > _what_ would be the benefit of this?). If I _want_ to, I can (by > retrieving the key and playing around with $pgp_verify_sig).
On the slim chance that your question is not rhetorical I'll hazard an answer. >would be the benefit of this? It mitigates against 2 of my weaknesses. Bad memory and lazyness. Patience seems to be something of which I have enough; maybe too much. I have enough patience to wait for keyserver response. A keyserver response wait tells me that I've never before read a message (so far I've never encountered a downed key server at the site I'm using) signed by this person. If I always verify, then I don't have to remember the verify command. On occasions when I want to verify I don't need to care how it's done because I've already done it. It might all go back to my mother not allowing me to purchase the secret decoder ring on the back of the rice crispies box. Ever since then I've always thought things related to encryption were cool. JPK
msg31865/pgp00000.pgp
Description: PGP signature
