Re: Convenient access to Debian keyrings

To: Sean Whitton <spwhitton@spwhitton.name>
Cc: debian-devel@lists.debian.org, pkg-gnupg-maint@lists.alioth.debian.org, keyring-maint@debian.org
Subject: Re: Convenient access to Debian keyrings
From: Teemu Likonen <tlikonen@iki.fi>
Date: Sun, 02 Apr 2017 07:52:00 +0300
Message-id: <[🔎] 87inmns973.fsf@iki.fi>
In-reply-to: <[🔎] 20170401224017.nlmgdg4ulf5b5mjk@iris.silentflame.com> (Sean Whitton's message of "Sat, 1 Apr 2017 15:40:17 -0700")
References: <[🔎] 20170401224017.nlmgdg4ulf5b5mjk@iris.silentflame.com>

Sean Whitton [2017-04-01 15:40:17-07] wrote:

> Currently, I have mutt pass `--keyring /usr/share/keyrings/...` for each
> of the keyrings, so that I can verify signatures on e-mails.  It would
> be more natural to just add `keyring /usr/share/keyrings/...` to
> ~/.gnupg/gpg.conf, but when I tried this I often got errors from gpg
> trying to write to the keyrings in /usr/share/keyrings.  Is there some
> way to mark a keyring as read-only?

Perhaps --primary-keyring will help because it marks one keyring for use
with key-importing commands. I haven't tried it but it would seem that
all other keyrings are then read-only.

~/.gnupg/gpg.conf:

    primary-keyring ~/.gnupg/pubring.kbx
    keyring /usr/share/...
    keyring /usr/share/...
    keyring /usr/share/...


-- 
/// Teemu Likonen   - .-..   <https://keybase.io/tlikonen> //
// PGP: 4E10 55DC 84E9 DFF6 13D7 8557 719D 69D3 2453 9450 ///

Attachment: signature.asc
Description: PGP signature

Reply to:

Follow-Ups:
- Re: Convenient access to Debian keyrings
  - From: Sean Whitton <spwhitton@spwhitton.name>

References:
- Convenient access to Debian keyrings
  - From: Sean Whitton <spwhitton@spwhitton.name>

Prev by Date: Re: Convenient access to Debian keyrings
Next by Date: Re: Bug#859199: ITP: dh-curl-sudo-bash -- debhelper tools for automated non-packaging
Previous by thread: Re: Convenient access to Debian keyrings
Next by thread: Re: Convenient access to Debian keyrings
Index(es):
- Date
- Thread