From: Brian D. Winters <[EMAIL PROTECTED]>
To: mutt-users <[EMAIL PROTECTED]>
Sent: Thursday, April 06, 2000 12:02 AM
Subject: Re: gpg always downloading sigs for signed mail...
> On Wed, Apr 05, 2000 at 10:45:15AM -0400, Sam Roberts wrote:
> > I'd just like to have better control over when gpg tries to
> > download keys, I wish it (or mutt) would ask "hey, do you want
> > me to try and fetch this key from $keyserver?".
>
> Have you tried hitting ^C if the fetch is taking too long? The policy
> when using gpg with mutt is effectively to assume yes, but allow an
> interrupt if the answer is no.
I'll try, but my concern is mostly getting tons of total
stranger's keys on my public ring, I just don't want them,
even if its fast.
I think the problem (if you can call it one) is two-fold. Looking
at gpg, it looks like the keyfetching is a little *too* transparent,
there doesn't seem to be an option to --verify that says just use
the local keychain, and also doesn't seem to be any hooks in the
co-processing protocol such that gpg can say verification failed,
do you want me to ask a keyserver for a key? And since it doesn't
exist, mutt doesn't support this.
Anyhow. Feature request.
Sam
