Bug#341976: patch for apt-key adding interactive mode and keyserver support
Am Donnerstag, den 22.10.2009, 17:24 +0200 schrieb Stefan Tomanek:
> tags 341976 + patch
> I created the attached patch that adds the following features to
> apt-key --interactive add <filename>
> will show the keys that are to be imported with their fingerprints,
> making it possible to inspect them before adding them to the keyring
> and without polluting the personal key ring with keys that will never
> be used.
> apt-key --interactive fetch <keyid>
> will download the specified key from a keyserver, presenting its data
> to the user and awaiting confirmation before adding the key.
> Without --interactive/-i, the fetch command will be denied due to security
I don't see a reason to do this. This is a command-line tool which only
works as root and limiting the root user is non-sense. He could just
point gpg to APT's keyring and add the key without apt-key, thus there
is no security benefit in requiring interactiveness.
The user should have the control over his machine, and if he wants to
add a keyring without verifying it manually, he should be allowed to do