Date: Thu, 24 Feb 2022 17:42:05 +0000 From: bugzilla-noreply@freebsd.org To: doc@FreeBSD.org Subject: [Bug 262174] gpg.conf options in Committer's handbook should be reviewed/updated Message-ID: <bug-262174-9@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D262174 Bug ID: 262174 Summary: gpg.conf options in Committer's handbook should be reviewed/updated Product: Documentation Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Documentation Assignee: doc@FreeBSD.org Reporter: matteo@FreeBSD.org The committer's handbook suggests using some specific options for GnuPG to generate a key (see https://docs.freebsd.org/en/articles/committers-guide/#pgpkeys). These options should be reviewed and possibly updated, because they have so= me issues: * some of them are defaults (fixed-list-mode, verify-options show-uid-valid= ity, list-options show-uid-validity, at least as far as I can tell); * some of them only impact the output of gpg, so may not be needed, and at = the very least should be put next to each other, not mixed with others that imp= act key preferences (all the above); * some are a bit obsolete (default-prefs does not include anything for AEAD, nor any Camellia algorithm); * some are a bit dangerous (cert-digest-algo SHA512 may break the OpenPGP protocol and its use is discouraged in the GnuPG docs); * some are very weird (what is issuer-fpr@notations.openpgp.fifthhorseman.n= et ?) * none are commented, nor there is a link to the GnuPG doc (https://www.gnupg.org/documentation/manuals/gnupg/GPG-Options.html --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-262174-9>