Project

General

Profile

Feature #7512

Make GnuPG configuration closer to the duraconf one

Added by intrigeri over 5 years ago. Updated about 5 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
-
Target version:
Start date:
07/07/2014
Due date:
% Done:

100%

Feature Branch:
feature/7512-Make-GnuPG-config-closer-to-duraconf-reworked
Type of work:
Code
Blueprint:
Starter:
No
Affected tool:

Description

We should make good use of the great work done on https://help.riseup.net/en/security/message-security/openpgp/best-practices. The example configuration file lives in https://github.com/ioerror/duraconf.git.


Related issues

Blocks Tails - Feature #7416: Have GnuPG directly use the Tor SOCKS port Resolved 06/16/2014

Associated revisions

Revision 5b69490f (diff)
Added by Tails developers about 5 years ago

Make GnuPG configuration closer to the best practices one (Closes: #7512).

Thanks to Emma Peel and Kill Your TV for the original patches.

The configuration comes straight from:

... modulo these changes:

  • adjust ca-cert-file's location to match where we ship it; this will be fixed
    later on this branch;
  • have communication with keyservers go through Polipo (and in turn, through
    the Tor SOCKS proxy); this is tracked by #7416.

The only removed since our previous configuration is no-auto-key-locate, as it's
actually the default setting.

History

#2 Updated by Dr_Whax over 5 years ago

  • Assignee set to anonym
  • Target version set to Tails_1.2

#3 Updated by intrigeri over 5 years ago

  • Feature Branch set to emmapeel:feature/7512-Make-GnuPG-config-closer-to-duraconf

#4 Updated by intrigeri over 5 years ago

  • Status changed from Confirmed to In Progress

#5 Updated by intrigeri over 5 years ago

  • % Done changed from 0 to 10

Had a quick look, sent comments on tails-dev@.

#6 Updated by intrigeri over 5 years ago

  • Blocks Feature #7416: Have GnuPG directly use the Tor SOCKS port added

#7 Updated by intrigeri over 5 years ago

  • Assignee changed from anonym to intrigeri

Reviewing the updated patch sent by kytv on tails-dev@.

#8 Updated by intrigeri over 5 years ago

  • Assignee deleted (intrigeri)
  • QA Check changed from Ready for QA to Dev Needed

Review sent to tails-dev@, needs a little bit more dev, and quite some testing.

#9 Updated by intrigeri about 5 years ago

  • Target version changed from Tails_1.2 to Tails_1.2.1

It seems that this won't be done in time for 1.2. We really need this to make compliance with internal security policy easier, so flagging for the next point-release, in the hope it is completed by then.

#10 Updated by intrigeri about 5 years ago

  • Assignee set to intrigeri

I'll try to complete it, but don't assume anything. And if you want to do it, you got it.

#11 Updated by intrigeri about 5 years ago

  • % Done changed from 10 to 30
  • Feature Branch changed from emmapeel:feature/7512-Make-GnuPG-config-closer-to-duraconf to feature/7512-Make-GnuPG-config-closer-to-duraconf-reworked

Code and design doc are done. Now needs to be tested:

  • relevant parts of the automatic test suite
  • incremental upgrades, if affected

#12 Updated by intrigeri about 5 years ago

Passes features/checks.feature features/encryption.feature features/torified_gnupg.feature.

#13 Updated by intrigeri about 5 years ago

  • Assignee deleted (intrigeri)
  • % Done changed from 30 to 50
  • QA Check changed from Dev Needed to Ready for QA

#14 Updated by anonym about 5 years ago

  • Status changed from In Progress to 11
  • % Done changed from 50 to 100
  • QA Check changed from Ready for QA to Pass

#15 Updated by BitingBird about 5 years ago

  • Status changed from 11 to Resolved

Also available in: Atom PDF