From owner-freebsd-questions  Mon Mar 12 10:22:14 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from ns1.coastsight.com (ns1.coastsight.com [208.46.230.17])
	by hub.freebsd.org (Postfix) with ESMTP id ED07837B718
	for <freebsd-questions@freebsd.org>; Mon, 12 Mar 2001 10:22:12 -0800 (PST)
	(envelope-from maillist@coastsight.com)
Received: from ns1.coastsight.com ([208.46.230.17])
	by ns1.coastsight.com with esmtp (Exim 2.05 #1)
	id 14ceRu-0008z0-00
	for freebsd-questions@freebsd.org; Mon, 12 Mar 2001 18:22:10 -0800
Date: Mon, 12 Mar 2001 18:22:10 -0800 (PST)
From: Rick Duvall <maillist@coastsight.com>
To: freebsd-questions@freebsd.org
Subject: Trust public key only in PGP port
Message-ID: <Pine.BSF.4.21.0103121821240.34121-100000@ns1.coastsight.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

I am using pgpi 6.5.8 on FreeBSD 4.2-STABLE.  My supervisor does not want
any private keys on the web server (which is my FreeBSD box).  However, I
did put the public key of the person I am encrypting information for on
the server so that PGPi can encrypt messages for them, and them alone.  I
do know it is possible to encrypt with just a public key and no private
key.  However, when I don't have a private key on the server, I keep
getting this prompt for user input to answer "Y" if I trust the public
key.  This won't work in a CGI.

Is there a way where it will just default to "Y" and not ask me, or do I
absolutely have to have that private key on there to sign the public key?

Thanks for your help.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message