* PeterKorman <[EMAIL PROTECTED]> [16-10-2002 16:30]: > On Wed, Oct 16, 2002 at 03:02:31PM +0200, René Clerc wrote: > > * Stephane Bortzmeyer <[EMAIL PROTECTED]> [16-10-2002 14:52]: > > > > [about PGP signatures] > > > > > Or to hide it unless specifically called? > > > > unset pgp_verify_sig > > In a perfect world, I think I'd want to know only > if the signature did *NOT* check out against the > keyserver copy.
The part of his question I replied to, is the part that doesn't require a patch for mutt, if I'm correct. I believe my reply is valid; if you want to hide GnuPG output, then don't verify. [...] > I'd like to always verify, always fetch > keys (that are not already on my keychain), but only see > signature verification failures. Everything else should > be invisible. Well, maybe a rotating slash to indicate > fetch activity between me and the keyserver. This requires a patch. Or a nifty $display_filter setting. Personally, I don't like keyrings with hundreds of keys. So I don't use the auto-key-retrieve option of gpg. If a post to, let's say, mutt-users is signed (like mine are), I usually don't feel the direct need to verify the signature (exactly _what_ would be the benefit of this?). If I _want_ to, I can (by retrieving the key and playing around with $pgp_verify_sig). -- René Clerc - ([EMAIL PROTECTED]) The burning question on the mind of every dyslexic existentialist: "Is there a dog?"
msg31864/pgp00000.pgp
Description: PGP signature
