GNOME Bugzilla – Bug 591342
semi-automatic trust check for keys
Last modified: 2021-05-19 11:08:20 UTC
Implement Adam Schreiber's idea (http://bugzilla.gnome.org/show_bug.cgi?id=591027) of a semi-automatic trust check. If there are any untrusted keys, challenge the owner by an automatic mail. The owner of the key then signs this mail and sends it back. If the key owner also has a mail client that supports this verification protocol this can be done automatically. As soon as the signed mail returns, the key can be granted a marginal vaildity. The plugin should do: - sends a challenge to all untrusted keys (once per key) - the challenge contains a specified, parseable part (for automatic handling) - the challenge can contain plaintext explanation (for human interaction) - the same plugin recognizes challenges and responds to them - returned challenges are checked and the trust is updated There is a similar bug posted for Thunderbird/Enigmail https://www.mozdev.org/bugs/show_bug.cgi?id=21374 Co-operate to define the parseable part of the message for seamless interaction between the mail clients
> Co-operate to define the parseable part of the message for seamless > interaction between the mail clients That's a bit funny... A defined standard probably makes more sense.
GNOME is going to shut down bugzilla.gnome.org in favor of gitlab.gnome.org. As part of that, we are mass-closing older open tickets in bugzilla.gnome.org which have not seen updates for a longer time (resources are unfortunately quite limited so not every ticket can get handled). If you can still reproduce the situation described in this ticket in a recent and supported software version, then please follow https://wiki.gnome.org/Community/GettingInTouch/BugReportingGuidelines and create a new enhancement request ticket at https://gitlab.gnome.org/GNOME/evolution/-/issues/ Thank you for your understanding and your help.