Re: mutt and clear-signing
On Wed, Jul 03, 2019 at 09:20:53AM +1000, m...@raf.org wrote: be warned though that the SKS network (where you might get keys from) has recently been attacked by the poisoning of some high profile keys that, if fetched and imported, will break your gnupg installation. see the following for more information and advice: https://gist.github.com/rjhansen/67ab921ffb4084c865b3618d6955275f thanks very much for this. what a nightmare! -- J. signature.asc Description: PGP signature
Re: mutt and clear-signing
GPG probably needs no key servers as users can directly exchange keys in mutt. On 7/3/2019 2:20 AM, m...@raf.org wrote: > Derek Martin wrote: > >> On Tue, Jul 02, 2019 at 02:48:21PM +0100, tech-lists wrote: >>> Hi, >>> >>> I'm using mutt v.1.12.0 on freebsd-current with gpgme. In my config, mutt >>> will >>> verify clearsigned gpg sigs if the public key is on the gpg keyring. >>> >>> But if the key is unknown, mutt will say the key is unknown, and this is >>> normal and expected. >>> >>> What I want to happen is, if the key is unknown i'd like mutt to prompt >>> something like "get key y/n" or even automatically fetch the key and add >>> it to the keyring if the public key is valid. >> You can do this by configuring gnupg itself to do it. You need to >> tell gnupg what key server to use (you probably already did that), and >> then you need to add the option auto-key-retrieve in gnupg.conf. >> >> -- >> Derek D. Martinhttp://www.pizzashack.org/ GPG Key ID: 0xDFBEAD02 >> -=-=-=-=- >> This message is posted from an invalid address. Replying to it will result >> in >> undeliverable mail due to spam prevention. Sorry for the inconvenience. > be warned though that the SKS network (where you might get keys from) > has recently been attacked by the poisoning of some high profile keys > that, if fetched and imported, will break your gnupg installation. > > see the following for more information and advice: > > https://gist.github.com/rjhansen/67ab921ffb4084c865b3618d6955275f >
Re: mutt and clear-signing
Derek Martin wrote: > On Tue, Jul 02, 2019 at 02:48:21PM +0100, tech-lists wrote: > > Hi, > > > > I'm using mutt v.1.12.0 on freebsd-current with gpgme. In my config, mutt > > will > > verify clearsigned gpg sigs if the public key is on the gpg keyring. > > > > But if the key is unknown, mutt will say the key is unknown, and this is > > normal and expected. > > > > What I want to happen is, if the key is unknown i'd like mutt to prompt > > something like "get key y/n" or even automatically fetch the key and add > > it to the keyring if the public key is valid. > > You can do this by configuring gnupg itself to do it. You need to > tell gnupg what key server to use (you probably already did that), and > then you need to add the option auto-key-retrieve in gnupg.conf. > > -- > Derek D. Martinhttp://www.pizzashack.org/ GPG Key ID: 0xDFBEAD02 > -=-=-=-=- > This message is posted from an invalid address. Replying to it will result in > undeliverable mail due to spam prevention. Sorry for the inconvenience. be warned though that the SKS network (where you might get keys from) has recently been attacked by the poisoning of some high profile keys that, if fetched and imported, will break your gnupg installation. see the following for more information and advice: https://gist.github.com/rjhansen/67ab921ffb4084c865b3618d6955275f
Re: mutt and clear-signing
On Tue, Jul 02, 2019 at 02:48:21PM +0100, tech-lists wrote: > Hi, > > I'm using mutt v.1.12.0 on freebsd-current with gpgme. In my config, mutt will > verify clearsigned gpg sigs if the public key is on the gpg keyring. > > But if the key is unknown, mutt will say the key is unknown, and this is > normal and expected. > > What I want to happen is, if the key is unknown i'd like mutt to prompt > something like "get key y/n" or even automatically fetch the key and add > it to the keyring if the public key is valid. You can do this by configuring gnupg itself to do it. You need to tell gnupg what key server to use (you probably already did that), and then you need to add the option auto-key-retrieve in gnupg.conf. -- Derek D. Martinhttp://www.pizzashack.org/ GPG Key ID: 0xDFBEAD02 -=-=-=-=- This message is posted from an invalid address. Replying to it will result in undeliverable mail due to spam prevention. Sorry for the inconvenience. pgpS4qIfDS4wW.pgp Description: PGP signature
mutt and clear-signing
Hi, I'm using mutt v.1.12.0 on freebsd-current with gpgme. In my config, mutt will verify clearsigned gpg sigs if the public key is on the gpg keyring. But if the key is unknown, mutt will say the key is unknown, and this is normal and expected. What I want to happen is, if the key is unknown i'd like mutt to prompt something like "get key y/n" or even automatically fetch the key and add it to the keyring if the public key is valid. What's the best way to accomplish this? At the moment I have to open another term and gpg --recv-keys keyid thanks, -- J. signature.asc Description: PGP signature
