<<< Date Index >>>     <<< Thread Index >>>

Re: Do you auto fetch GPG keys?



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Friday, June 16 at 05:29 PM, quoth Ye Fei:
>Thank you for kindly reply.
>I set crypt_verify_sig=yes, and follow your advice. However I
>still can not verify the encrypted signature. 
>It said can not find public key.

Now that, finally, is a good (well, expected, anyway) thing for it to 
say.

>I think perhaps I did not configure my gnupg correctly. In my
>.gnupg/gpg.conf, there is a line "skeyserver hkp://subkeys.pgp.net"
>Is this a correct server for downloading the "public key" needed
>to verify your encrypted sig.

Try adding this to your .gnupg/gpg.conf:

    keyserver-options auto-key-retrieve

That will make gpg automatically fetch keys for signatures if it 
doesn't already know the public key for it.

>How can I know your keys? no matter the public or the private. Shall 
>I set "pgp_getkeys_command"? I do not how to set it.
>I am sorry if this is not a mutt-relevant subject.

You can do that too (but I think the above one is more important). 
This setting should work:

set pgp_getkeys_command="gpg --recv-keys %r > /dev/null 2>&1"

~Kyle
- -- 
Despite my 30 years of research into the feminine soul, I have not yet 
been able to answer the great question that has never been answered: 
What does a woman want?
                                                      -- Sigmund Freud
-----BEGIN PGP SIGNATURE-----
Comment: Thank you for using encryption!

iD8DBQFEkvorBkIOoMqOI14RAiDyAKDPqxF/SLbu5ug2q2i/Dg/l2GEJSACgrAlA
82UKnMB6tJRU12JcxCsZ9FU=
=JGKK
-----END PGP SIGNATURE-----