--show-policy behaviour?

Adrian 'Dagurashibanipal' von Bidder avbidder at fortytwo.ch
Sat Aug 9 15:24:02 CEST 2003


Yo!

What exactly is the behaviour of show-policy? I've been slightly annoyed today 
(easily workaroundable(tm), so no problem)

gpg --clearsign on the terminal: the signature policy is displayed in the 
signed message part like
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

blah
fasel
Signature policy: 
http://fortytwo.ch/legal/gpg/email.20020822?version=1.5&md5sum=5dff868d11843276071b25eb7006da3e
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: get my key from http://fortytwo.ch/gpg/92082481

iKcEARECAGcFAj805qJgGmh0dHA6Ly9mb3J0eXR3by5jaC9sZWdhbC9ncGcvZW1h
aWwuMjAwMjA4MjI/dmVyc2lvbj0xLjUmbWQ1c3VtPTVkZmY4NjhkMTE4NDMyNzYw
NzFiMjVlYjcwMDZkYTNlAAoJEIukMYvlp/fWcJoAnRtDEAvMeFsdl9zKiR2Sy8/i
DgnXAKDazHLB3AYdVOuQvgR3KyuK8NnnKg==
=xnWr
-----END PGP SIGNATURE-----

so copy-pasting (damn pseudo english verbs today) from the console breaks. 
Apparently it's displayed on stdout, too, so 2>/dev/null doesn't help either.

Funnily when redirecting stdout to a file, the signature policy is displayed 
after the signature, so it doesn't break the sig.

Proposal: display signature policy only when verifying a signature.

(And Werner, if you're going to say it's in 1.2.3rcX already one more time, I 
shall definitely throw something out of the window or whatever ;-)

greetings
-- vbi

-- 
Could this mail be a fake? (Answer: No! - http://fortytwo.ch/gpg/intro)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 445 bytes
Desc: signature
Url : /pipermail/attachments/20030809/8029c5f9/attachment.bin


More information about the Gnupg-devel mailing list