-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On 02/25/2016 03:54 PM, Peter Lebbing wrote: > On 2016-02-25 15:50, Kristian Fiskerstrand wrote: >> (in particular in cases where action from yourself is required, >> default key for signing etc). > > I agree. Note that the discussed case, encrypt-to, silently > encrypts to unvalidated keys that happen to be on a keyring. Just > pick any key on your keyring that isn't valid, say it's mine, > AC46EFE6DE500B3E, and put this in your gpg.conf (watch out what > you're doing here, though!):
Yeah, the no validation mode of encrypt-to really does call for prudence in this specific case - -- - ---------------------------- Kristian Fiskerstrand Blog: https://blog.sumptuouscapital.com Twitter: @krifisk - ---------------------------- Public OpenPGP key at hkp://pool.sks-keyservers.net fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3 - ---------------------------- Aquila non capit muscas The eagle does not hunt flies -----BEGIN PGP SIGNATURE----- iQEcBAEBCgAGBQJWz0PWAAoJECULev7WN52FzHkIAKX4xajf5KpXJOXw5dnvd2qi 1246DTAAKs1kqpOMvGWtmJ6cHVB5oAzhrClu93iceCfIYBuOl5GPSruvKfm8A0gt dS/FKyofu3lkyVHhmrwVNsl+zwNYgYdbgTxtzI6GDIj2iP0HywwXbCoBm0JmGVun FOeba0/zD82QncDcSVTq6dX7x3bP6tXwszzh9zOzUwjHTw6gPYtj34dOFd+a6fBW bMtzEhQz9mrRdgkvKU1v26NJ1PubsPOFzra3ws/Y7SPNje0lV9cZvUHwzCPG9H43 1YZkZImz+hAoj/a7Fn/Xb3CSpzG59PsCO1KJsdyt5BD/sjX+ofA/yqUHI3LUmdg= =jMFi -----END PGP SIGNATURE----- _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users