From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <david@tethera.net>
Received: from localhost (localhost [127.0.0.1])
 by arlo.cworth.org (Postfix) with ESMTP id 833076DE0243
 for <notmuch@notmuchmail.org>; Fri, 15 Mar 2019 06:50:42 -0700 (PDT)
X-Virus-Scanned: Debian amavisd-new at cworth.org
X-Spam-Flag: NO
X-Spam-Score: -0.014
X-Spam-Level: 
X-Spam-Status: No, score=-0.014 tagged_above=-999 required=5
 tests=[AWL=-0.013, SPF_PASS=-0.001] autolearn=disabled
Received: from arlo.cworth.org ([127.0.0.1])
 by localhost (arlo.cworth.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id pWykuHocS0iH for <notmuch@notmuchmail.org>;
 Fri, 15 Mar 2019 06:50:42 -0700 (PDT)
Received: from fethera.tethera.net (fethera.tethera.net [198.245.60.197])
 by arlo.cworth.org (Postfix) with ESMTPS id E38386DE0EB8
 for <notmuch@notmuchmail.org>; Fri, 15 Mar 2019 06:50:41 -0700 (PDT)
Received: from remotemail by fethera.tethera.net with local (Exim 4.89)
 (envelope-from <david@tethera.net>)
 id 1h4nEJ-0006hU-6d; Fri, 15 Mar 2019 09:50:35 -0400
Received: (nullmailer pid 14645 invoked by uid 1000);
 Fri, 15 Mar 2019 13:50:34 -0000
From: David Bremner <david@tethera.net>
To: Adam Majer <amajer@suse.de>, Daniel Kahn Gillmor <dkg@fifthhorseman.net>,
 Carl Worth <cworth@cworth.org>, notmuch@notmuchmail.org
Subject: Re: [PATCH] build: sign tarball instead of sha256sum
In-Reply-To: <4e447225-0b1e-5142-20fc-492a35e2f314@suse.de>
References: <87mun16gmm.fsf@wondoo.home.cworth.org>
 <20190213021703.18412-1-david@tethera.net> <87lg1kcqg8.fsf@tethera.net>
 <87ftrpgjdb.fsf@fifthhorseman.net>
 <3bbd5c2e-54b7-dbbd-6065-68ce2c2005fd@suse.de>
 <87tvg4wm2v.fsf@fifthhorseman.net>
 <4e447225-0b1e-5142-20fc-492a35e2f314@suse.de>
Date: Fri, 15 Mar 2019 10:50:34 -0300
Message-ID: <87zhpwgsb9.fsf@tethera.net>
MIME-Version: 1.0
Content-Type: text/plain
X-BeenThere: notmuch@notmuchmail.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Use and development of the notmuch mail system."
 <notmuch.notmuchmail.org>
List-Unsubscribe: <https://notmuchmail.org/mailman/options/notmuch>,
 <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
List-Archive: <http://notmuchmail.org/pipermail/notmuch/>
List-Post: <mailto:notmuch@notmuchmail.org>
List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
List-Subscribe: <https://notmuchmail.org/mailman/listinfo/notmuch>,
 <mailto:notmuch-request@notmuchmail.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Mar 2019 13:50:42 -0000

Adam Majer <amajer@suse.de> writes:

> The (my?) expectation is that a *.asc file is a detached signature. 
> That's why GPG is warning when it is not a detached signature. But I can 
> live with .sha256.asc if there is no .sha256 ;)

Right, aren't detached signatures preferred in general? Or am I
misremembering some gpg folklore?

d