[Touch-packages] [Bug 1409117] Re: GPG does not verify keys received when using --recv-keys leaving communicaiton with key servers vulnerable to MITM

aah makes sense. thanks. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to gnupg in Ubuntu. https://bugs.launchpad.net/bugs/1409117 Title: GPG does not verify keys received when using --recv-keys leaving communicaiton with

[Touch-packages] [Bug 1409117] Re: GPG does not verify keys received when using --recv-keys leaving communicaiton with key servers vulnerable to MITM

gpg is commonly used for verifying signatures before installing packages and is how you would get packages from Launchpad too, right? forgive me, but maybe wishlist is too low a importance? Obviously, your call and I am not experienced with the project here, but I really think this should be