[pass] gpg trust-model patch
David Adam
zanchey at ucc.gu.uwa.edu.au
Mon Sep 21 15:06:42 CEST 2015
Hi Tobias
In our team wrapper, we just set $PASSWORD_STORE_GPG_OPTS to
"--trust-model always" - in fact that was merged to enable exactly this
behaviour.
HTH,
David Adam
zanchey at ucc.gu.uwa.edu.au
On Mon, 14 Sep 2015, Tobias Rueetschi wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> Hi
>
> I use pass in a team and we didn't sign each others key, so while the
> encryption gpg breaks, because of untrusted keys. On pass init the
> keys are given, IMHO this must be enough to choose the keys, so I
> patched pass and changed the trust-model to always, I'll be happy if
> you use this patch upstream.
>
> Author: Tobias Rueetschi <tr at brief.li>
> Date: Mon Sep 14 19:59:06 2015 +0000
>
> Changing gpg trust-model to always.
>
> Signed-off-by: Tobias Rueetschi <tr at brief.li>
>
> diff --git a/src/password-store.sh b/src/password-store.sh
> index d535a74..9894d47 100755
> - --- a/src/password-store.sh
> +++ b/src/password-store.sh
> @@ -6,7 +6,7 @@
> umask "${PASSWORD_STORE_UMASK:-077}"
> set -o pipefail
>
> - -GPG_OPTS=( $PASSWORD_STORE_GPG_OPTS "--quiet" "--yes"
> "--compress-algo=none" "--no-encrypt-to" )
> +GPG_OPTS=( $PASSWORD_STORE_GPG_OPTS "--quiet" "--yes"
> "--compress-algo=none" "--no-encrypt-to" "--trust-model=always" )
> GPG="gpg"
> export GPG_TTY="${GPG_TTY:-$(tty 2>/dev/null)}"
> which gpg2 &>/dev/null && GPG="gpg2"
>
> - --
> Tobias Rueetschi
> email: tr at brief.li
> xmpp: tr at jabber.brief.li
> -----BEGIN PGP SIGNATURE-----
>
> iQJ8BAEBCgBmBQJV9zKqXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
> ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ5RjVFRjE5ODM0Q0VBM0I3MUE4RUIyMUU4
> RDc2QTI4NTk5QkZFQTI5AAoJEI12ooWZv+op7R8P/i2EfTxD5fuCZ+ZhGeQckfrV
> eBmHTZSDKzShXk/GjgXONA4lq00N2gb9FNRqz7kB/iY6f7MFW1TaCZ5mIhEsen21
> uQHipG6TUex83uIrcb+ZFaWRcv26wRQfEqBp2AWukoiFocVekQgtSxNSneSXZDDP
> ma+4ZEaTbsDtEhJRHWZqyssyk8M9LYpZWrOnN23zzK+kSXKpwijlbIRiB09lmFg0
> smGOxpHOGT2LPKyueify8OX/o1zQ+gptOuVTeJeljjs7IrEm0XZATUhLd0lFFIqp
> 7evujNJ+CR0jILfwKorUenfXHyeD/3xUb+YSMjbeWM83L5RMQMHFCf4LZqtpB+sR
> r5AV1x4QwGbRhsjlulF9jgAuKQfOMZgdl/p0HgiOPyLKLFqXCrhyNrZ37woOLnvn
> eYESfqWwgMR/N2TNk5TThP5JSSZmw5A0rtvVRIuSJyYnMnwqL2wz8dPvGoTIdEPC
> dgll0ubAbWnAOf297uevEEoR+ku4S4mbCUMiUHu1Q51uqwUlsTPXmq3A9B8ZFOCU
> XIUtAeKVH9sJjUggt8cwTb2rZN+AbkSF+krr5m4B7eFweMfDpCP7E0/bBprnQkY9
> kFEXPAX1jR55++gpHA4jML/ECBdAjqXmLkRda5C5Z01J1/9sUPTIFk5DsCXMt4j8
> RrvSu2nilRL3G7iKvwWP
> =A2WN
> -----END PGP SIGNATURE-----
> _______________________________________________
> Password-Store mailing list
> Password-Store at lists.zx2c4.com
> http://lists.zx2c4.com/mailman/listinfo/password-store
>
Cheers,
David Adam
zanchey at ucc.gu.uwa.edu.au
Ask Me About Our SLA!
More information about the Password-Store
mailing list