[tor-bugs] #9060 [TorBirdy]: gpg reads .gnupg/gpg.conf

[Tor Bug Tracker & Wiki]

#9060: gpg reads .gnupg/gpg.conf
----------------------+-----------------------------------------------------
 Reporter:  proper    |          Owner:  ioerror     
     Type:  defect    |         Status:  needs_review
 Priority:  normal    |      Milestone:              
Component:  TorBirdy  |        Version:              
 Keywords:            |         Parent:              
   Points:            |   Actualpoints:              
----------------------+-----------------------------------------------------
Changes (by isis):

  * status:  new => needs_review
 * cc: isis@… (added)


Comment:

 There is an "ignore config" command for GnuPG, it´s "--no-options".
 Although, this can have unwanted effects because GnuPG will then not know
 where to look for your default keyring, which key to sign with, etc. It
 will also fall back to the default options (for whichever GnuPG version
 you´re running) for the personal-{digest,cipher,compress}-prefs options,
 meaning that if you specified SHA256 as your preferred digest it will go
 back to being SHA1. Literally, all the options get reset.

 If Sukhbir and Jake think it´s a good idea, I´ve added the "--no-options"
 flag as well as a mechanism for making sure the keyrings are still found,
 the patch is attached. (Or I can make a pull request if that´s easier,
 just poke me on IRC.)

 Someone should test my code first, and I have a build available and
 uploaded (ask me where it is on IRC); I don´t have Thunderbird/IceDove.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/9060#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online