WKD: User ID filtering

Andre Heinecke aheinecke at intevation.de
Thu Jun 21 10:49:48 CEST 2018


Hi,

On Thursday, June 21, 2018 10:21:21 AM CEST Werner Koch wrote:
> On Thu, 21 Jun 2018 10:16, gnupg-devel at gnupg.org said:
> > Is that flag used for anything or just informational?
> 
> It can be read out and will eventually be used for key validation
> heuristics.  Option --with-key-origin and in the --with-colons output
> fields 19 and 20 of uid and pub records.

In gpgme it is also available since 1.10.0 ;-)

> > Because fetching via WKD at least "validates" the e-mail part and this
> > information is useful.

As an example, I'm using that flag for "Automatic Encryption" in GpgOL. It will 
see a userid as acceptable for automatic encryption if it has either marginal 
validity (when TOFU is not used) or if it came from WKD.

Best Regards,
Andre

-- 
Andre Heinecke |  ++49-541-335083-262  | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20180621/8d439326/attachment-0001.sig>


More information about the Gnupg-devel mailing list