1 |
On 10/27/2016 11:09 AM, Alexander Berntsen wrote: |
2 |
> On 27/10/16 19:16, Zac Medico wrote: |
3 |
>> Use gkeys to verify gpg signatures by default. Refresh the gentoo |
4 |
>> snapshot signing key before signature verification, in order to |
5 |
>> ensure that the latest revocation data is available. Add an |
6 |
>> --insecure option which disables gpg signature verification. Warn |
7 |
>> about man-in-the-middle attacks when the --insecure option is used. |
8 |
>> Deprecate the pre-existing webrsync-gpg feature since it requires |
9 |
>> manual gpg configuration. |
10 |
> %s/ gpg/ OpenPGP/ |
11 |
> |
12 |
|
13 |
Thanks, fixed. |
14 |
-- |
15 |
Thanks, |
16 |
Zac |