GnuPG 2.0.3: gpgconf.conf and allow-mark-trusted

Werner Koch wk at
Tue Apr 3 19:25:17 CEST 2007

On Fri, 30 Mar 2007 13:54, jan-oliver.wagner at said:

> I realized that "allow-mark-trusted" is set to "no-change" hardwired
> in the source code. I am aware it is set to "change" through gpgconf.conf
> (if installed correctly).

I reverted that.  The gpgconf.conf now has a no-change example.

> Next, the default gpgconf.conf should not set anything but only
> keep some examples (like the one for  "allow-mark-trusted") commented
> out.

There is no default ggconf.conf - it is just an example on what can be done.

> Then we would have a liberal default and it is subject to packagers or
> sysadmins to define policies.

I don't agree that liberal defaults are a Good Thing.  However in this
case I reverted it because we should not be more restrictive than in the



More information about the Gnupg-devel mailing list