Am Donnerstag, den 22.10.2009, 17:24 +0200 schrieb Stefan Tomanek: > tags 341976 + patch > > Greetings, > I created the attached patch that adds the following features to > apt-key: > > apt-key --interactive add <filename> > > will show the keys that are to be imported with their fingerprints, > making it possible to inspect them before adding them to the keyring > and without polluting the personal key ring with keys that will never > be used. > > apt-key --interactive fetch <keyid> > > will download the specified key from a keyserver, presenting its data > to the user and awaiting confirmation before adding the key. > > Without --interactive/-i, the fetch command will be denied due to security > considerations. I don't see a reason to do this. This is a command-line tool which only works as root and limiting the root user is non-sense. He could just point gpg to APT's keyring and add the key without apt-key, thus there is no security benefit in requiring interactiveness.
The user should have the control over his machine, and if he wants to add a keyring without verifying it manually, he should be allowed to do so. Regards, Julian -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
