Fully support gpg 2.0.27: New import option "keep-ownertrust" in UI
Reported by steve | February 19th, 2015 @ 02:51 PM | in 1.4 (closed)
2.0.27 brings a neat feature to keep key ownertrust when exportign / importing. Up till now, ownertrust was always reset to "unkown" after a key import.
I'm not 100% sure, where this needs to be modified (on import or only export). Assuming export is enough, that would mean:
- on Key export add an option to export ownertrust settings for the exported key / keys
Then on import, the ownertrust should stick to the original value and not be reset to "unkown".
This is a first draft, we need to evaluate details and actually test the behavior before starting to implement a UI solution. Especially: what happens if the import happens on a system using an older MacGPG version.
Comments and changes to this ticket
-
steve May 15th, 2017 @ 03:14 PM
- State changed from “new” to “wontfix”
- Milestone set to “1.4”
WONTFIX
This poses some risks. E.g. when a user removed a key several years ago without changing ownertrust (which probably the choice most users will take), then re-imports the key (for whatever reasons) but no longer trusts that key, the user ends up with a key w potentially full ownertrust and other keys trusted as well due to the signing chain.
So this is an expert only option and it's ok for this feature to be limited to the command line.
Please Sign in or create a free account to add a new ticket.
With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.
Create new ticket
Create your profile
Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป
Luke Le
steve