On 2021-10-25 at 15:12 +0200, Neal H. Walfield wrote:
> This absolutely makes sense. One way to model this in the web of
> trust is to imagine that you have a "WKD key," which you consider a
> partially trusted introducer, and which certifies keys that you
> retrieve via WKD. Practically, it's a
Hi
I am really not a programmer ;-) but I tried to compile GnuPG 2.2.32 on my
Ubuntu 20.04 system.
Before I compiled libgcrypt 1.8.8 - seems to work, no error messages. So
these libreriers are going to /usr/local/lib
So I tell configure for GnuPG 2.2.32 to take this libgcrypt 1.8.8 files
with .
Hi Phil,
On Fri, 22 Oct 2021 17:00:11 +0200,
Phil Pennock via Gnupg-users wrote:
> When evaluating the trust we have in the identity attached to a key, I
> often see "WARNING: We have NO indication whether the key belongs to the
> person named as shown above"; at the same time, `--with-key-origin`
Hi Christian,
Am Freitag 22 Oktober 2021 15:24:27 schrieb Christian Chavez via Gnupg-users:
> Anyone got any suggestions on how to debug this?
if you swap in the elder versiong of GnuPG, you could conclude that it is
indeed the change of behaviour between the versions.
If so you could find out
Hi Phil,
Am Freitag 22 Oktober 2021 17:00:11 schrieb Phil Pennock via Gnupg-users:
> I think what I _want_ is `trust-model pgp+federated+tofu`, which means,
> in order: (1) any sigs from the WoT; (2) origin information from the
> key, if the origin shows the key was safely retrieved from a federat
