Download of public keys

Kristian Fiskerstrand kristian.fiskerstrand at
Fri Feb 17 21:57:42 CET 2017

On 02/17/2017 09:46 PM, sivmu at wrote:
> Am 17.02.2017 um 20:43 schrieb Kristian Fiskerstrand:
>> On 02/17/2017 07:17 PM, Kristian Fiskerstrand wrote:

>> That change would also be consistent with 
> Not quite sure I get this.
> So what this means is that effectively gnupg still uses plaintext
> connections to update public keys by default, does it not? 

Yes (if not a tor configuration locally)

> If the
> change I suggested is not correct, shouldn't we find another way to
> use secure connection by default whenever possible?

Probably nitpick, but it would likely increase privacy - not security.

> As it is now, the default fallback mentioned in the referenced commit
> never takes effect as long as the skel file is used.

Never would be inaccurate;
kristianf at ares ~/workspace $ mkdir abc
kristianf at ares ~/workspace $ gpg --homedir abc --recv-key

Kristian Fiskerstrand
Twitter: @krifisk
Public OpenPGP keyblock at hkp://
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
Qui audet vincit
Who dares wins

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20170217/f9039818/attachment-0001.sig>

More information about the Gnupg-users mailing list