[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Bug-wget] Signature verification support in wget?
From: |
Tim Rühsen |
Subject: |
Re: [Bug-wget] Signature verification support in wget? |
Date: |
Wed, 30 Aug 2017 17:28:20 +0200 |
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.3.0 |
On 08/30/2017 05:14 PM, Darshit Shah wrote:
> * Unknown PGP keys are always an interesting problem due to the
> various differences in how people would like to deal with it. By
> default, I would suggest that Wget reports a warning about a missing
> key and continues. There would be yet another switch
> "--import-missing-keys" which would cause Wget2 to attempt to
> contact keyservers and import the key.
Your emailer formats very interesting ;-)
Let's extend the warning by a clear command example how to retrieve the
missing key. Also there are inflictions when the proper fingerprint
isn't known.
Is there a way to download a key temporary and throw it away if the
signature doesn't match ? Because maybe the content+signature is correct
but the downloaded key is wrong...
With Best Regards, Tim
signature.asc
Description: OpenPGP digital signature