diff options
author | Dan McGee <dan@archlinux.org> | 2011-09-26 13:18:19 -0500 |
---|---|---|
committer | Dan McGee <dan@archlinux.org> | 2011-10-05 22:00:52 -0500 |
commit | 484d5ec624f12220df809b63bba719105eafdb8f (patch) | |
tree | da6373543e0fef7cb2b23bdbeaf65fd612f388bd /doc/pacman-key.8.txt | |
parent | ab7d2890a47f051a892b05b4d551de0e5c5c8282 (diff) | |
download | pacman-484d5ec624f12220df809b63bba719105eafdb8f.tar.xz |
pacman-key: treat foo-trusted as an ownertrust export file
This allows it to serve double-duty. In order to allow users to base
verification decisions off of both a valid signature and a trusted
signature, we need to assign some level of owner trust to the keys we
designate as trusted on import.
Signed-off-by: Dan McGee <dan@archlinux.org>
Diffstat (limited to 'doc/pacman-key.8.txt')
-rw-r--r-- | doc/pacman-key.8.txt | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/doc/pacman-key.8.txt b/doc/pacman-key.8.txt index d2da480f..1582a3ca 100644 --- a/doc/pacman-key.8.txt +++ b/doc/pacman-key.8.txt @@ -118,8 +118,10 @@ PGP keyring file `foo.gpg` that contains the keys for the foo keyring in the directory +{pkgdatadir}/keyrings+. Optionally, the file `foo-trusted` can be provided containing a list of trusted -key IDs for that keyring. This file will inform the user which keys a user -needs to verify and sign to build a local web of trust. +key IDs for that keyring. This is a file in a format compatible with 'gpg +\--export-ownertrust' output. This file will inform the user which keys a user +needs to verify and sign to build a local web of trust, in addition to +assigning provided owner trust values. Also optionally, the file `foo-revoked` can be provided containing a list of revoked key IDs for that keyring. Revoked is defined as "no longer valid for |