From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from localhost (localhost [127.0.0.1]) by arlo.cworth.org (Postfix) with ESMTP id E7D876DE1077 for ; Fri, 19 Jul 2019 22:53:18 -0700 (PDT) X-Virus-Scanned: Debian amavisd-new at cworth.org X-Spam-Flag: NO X-Spam-Score: -1.018 X-Spam-Level: X-Spam-Status: No, score=-1.018 tagged_above=-999 required=5 tests=[AWL=-0.466, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=disabled Received: from arlo.cworth.org ([127.0.0.1]) by localhost (arlo.cworth.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UNsQsu6HxJ_m for ; Fri, 19 Jul 2019 22:53:16 -0700 (PDT) Received: from mail.kapsi.fi (mail.kapsi.fi [91.232.154.25]) by arlo.cworth.org (Postfix) with ESMTPS id 31CD76DE106B for ; Fri, 19 Jul 2019 22:53:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=kapsi.fi; s=20161220; h=Content-Type:MIME-Version:Message-ID:Date:References: In-Reply-To:Subject:To:From:Sender:Reply-To:Cc:Content-Transfer-Encoding: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=AOQGuzgJtCWQ3TfH1wlf1LnobmpvmsCHqbmd3pfLdyE=; b=HA1WoRF7RfswD2cbetIFou6z+7 LujF0vkz0fUTY+42ivGM7MfePUa0kxLm6io3T5qHNYCkeqKYfrxw9CVm6UlVtenSfaMvBOdc3BrWn 0+aMIaUh/ILHHS/W6+3E0qrou0Xldaxa5hYSk6bdW2IuIp/CCaf2ROfSzKzgy/zny4yX2y2+DlYFx 5cyGE/e81h101Dlq+UCOqAQK2W6yd/K1ubAETVkPjJuLGiPsyDiT/CgEKsm7v0q6B8nMEHpYSV9tB tXPra9qSnCqEY3RJ7kuACEIImhSHMmWPfieZN85TY4NS6flIQ1zXSLjpupmUZTJV1z9okMF8UzvsS SfwcbBfw==; Received: from mobile-access-bcee88-225.dhcp.inet.fi ([188.238.136.225] helo=mithlond) by mail.kapsi.fi with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from ) id 1hoiIv-0003FF-Ki; Sat, 20 Jul 2019 08:53:09 +0300 From: Teemu Likonen To: Ralph Seichter , notmuch@notmuchmail.org Subject: Re: Notmuch support for GnuPG Web Key Directory In-Reply-To: <87a7dl1x2v.fsf@ra.horus-it.com> References: <87a7dl1x2v.fsf@ra.horus-it.com> Mail-Followup-To: Ralph Seichter , notmuch@notmuchmail.org Date: Sat, 20 Jul 2019 08:53:01 +0300 Message-ID: <87h87h6yma.fsf@iki.fi> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha256; protocol="application/pgp-signature" X-SA-Exim-Connect-IP: 188.238.136.225 X-SA-Exim-Mail-From: tlikonen@iki.fi X-SA-Exim-Scanned: No (on mail.kapsi.fi); SAEximRunCond expanded to false X-BeenThere: notmuch@notmuchmail.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Use and development of the notmuch mail system." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Jul 2019 05:53:19 -0000 --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Ralph Seichter [2019-07-10T21:58:00+02] wrote: > I have set up a Web Key Directory (see https://wiki.gnupg.org/WKD), > which is easy to do, and now I am wondering about Notmuch support for > WKD. Has anybody considered this, and perhaps even compiled a list of > necessary steps to implement it? What WKD support would mean for Notmuch front-end programs? I know that WKD is a key locating technology for GnuPG or OpenPGP keys in general but it seems to me that it is GnuPG's job. With "auto-key-locate" settings in place a command like gpg --encrypt --recipient person@domain would include WKD key lookup if the recipient's key isn't found from the local keyring. Also, signature checking with "auto-key-retrieve" option in GnuPG 2.2.17 will prefer WKD over keyservers (by default). So, what is there left for Notmuch and email clients? Do you mean a button like "Locate message sender's key" which would run a command like this: gpg --auto-key-locate clear,nodefault,wkd,keyserver \ --locate-key person@domain (Or use --locate-external-key which is in GnuPG 2.2.17.) =2D-=20 /// OpenPGP key: 4E1055DC84E9DFF613D78557719D69D324539450 // https://keys.openpgp.org/search?q=3Dtlikonen@iki.fi / https://keybase.io/tlikonen https://github.com/tlikonen --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQFEBAEBCAAuFiEEkhZiiC54Bnj5a16Skzo1BB5+rVEFAl0yrD0QHHRsaWtvbmVu QGlraS5maQAKCRCTOjUEHn6tUbo3B/9iiyaaIc/30gZDiXKNkUgIYzZ7VFou2Kwf KjrBXYkZ5AOZZDnqUeaUa5I/u0BWgj2BPq4t0gzBtF1Lu77B1PPHfO1K0yScpfYg DuCvitwEhyGcLCi3bIeuYr9vOXwid1lZrpZWnFMTZGyWFk2iJntdARGJOKGRzFru D///dAE8RBNL64uEQA9wH1T1ZFFktH3G3e4EC6r6eVqczQxUk8AmbMsfTSN+7eMu MfSjv3xcaBVjFs7CmLtmSBR4zCVGV9AiGXc9ZwXQnGj9p/8s6GSlaJU+N5P15DmK wevRI3rNHw4xFvDmgna7FkZi/ztMY7UXiG40DGaAeQp3uoWBpliS =nBUZ -----END PGP SIGNATURE----- --=-=-=--