Date: Thu, 24 Feb 2022 17:42:05 +0000 From: bugzilla-noreply@freebsd.org To: doc@FreeBSD.org Subject: [Bug 262174] gpg.conf options in Committer's handbook should be reviewed/updated Message-ID: <bug-262174-9@https.bugs.freebsd.org/bugzilla/>
index | next in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=262174 Bug ID: 262174 Summary: gpg.conf options in Committer's handbook should be reviewed/updated Product: Documentation Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Documentation Assignee: doc@FreeBSD.org Reporter: matteo@FreeBSD.org The committer's handbook suggests using some specific options for GnuPG to generate a key (see https://docs.freebsd.org/en/articles/committers-guide/#pgpkeys). These options should be reviewed and possibly updated, because they have some issues: * some of them are defaults (fixed-list-mode, verify-options show-uid-validity, list-options show-uid-validity, at least as far as I can tell); * some of them only impact the output of gpg, so may not be needed, and at the very least should be put next to each other, not mixed with others that impact key preferences (all the above); * some are a bit obsolete (default-prefs does not include anything for AEAD, nor any Camellia algorithm); * some are a bit dangerous (cert-digest-algo SHA512 may break the OpenPGP protocol and its use is discouraged in the GnuPG docs); * some are very weird (what is issuer-fpr@notations.openpgp.fifthhorseman.net ?) * none are commented, nor there is a link to the GnuPG doc (https://www.gnupg.org/documentation/manuals/gnupg/GPG-Options.html -- You are receiving this mail because: You are the assignee for the bug.home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-262174-9>