Why is --auto-key-locate only for encrypting?

Ingo Klöcker kloecker at kde.org
Wed Sep 1 13:50:36 CEST 2021

On Mittwoch, 1. September 2021 07:55:21 CEST raf via Gnupg-users wrote:
> Why is the --auto-key-locate only for encrypting (says
> the gpg(1) manpage)? Wouldn't it also be useful when
> receiving emails and verifying signatures?

--auto-key-locate looks up keys by email address. It makes no sense when 
verifying signatures because in this case you already know the key id the 
signature was made with, so that there's no reason to look up the key by email 
address (which is ambiguous).

The equivalent for automatic look-up of keys when verifying signatures is 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20210901/12230dd1/attachment.sig>

More information about the Gnupg-users mailing list