diff options
| author | Werner Koch <[email protected]> | 2022-06-14 12:25:21 +0000 |
|---|---|---|
| committer | Werner Koch <[email protected]> | 2022-06-14 12:25:21 +0000 |
| commit | 1530d04725d475bf29328eab40b42f72ff8aa06b (patch) | |
| tree | 238cce7b7458be38246758911e84e9506e296e0a /doc/gpg-agent.texi | |
| parent | g10: Fix garbled status messages in NOTATION_DATA (diff) | |
| download | gnupg-1530d04725d475bf29328eab40b42f72ff8aa06b.tar.gz gnupg-1530d04725d475bf29328eab40b42f72ff8aa06b.zip | |
agent: New option --no-user-trustlist and --sys-trustlist-name.
* agent/gpg-agent.c (oNoUserTrustlist,oSysTrustlistName): New.
(opts): Add new option names.
(parse_rereadable_options): Parse options.
(finalize_rereadable_options): Reset allow-mark-trusted for the new
option.
* agent/agent.h (opt): Add fields no_user_trustlist and
sys_trustlist_name.
* agent/trustlist.c (make_sys_trustlist_name): New.
(read_one_trustfile): Use here.
(read_trustfiles): Use here. Implement --no-user-trustlist.
--
With the global options we can now avoid that a user changes the
Root-CA trust by editing the trustlist.txt. However, to implement
this we need a new option so that we don't need to rely on some magic
like --no-allow-mark-trusted has been put into a force section.
The second option makes system administration easier as it allows to
keep the trustlist in a non-distributed file.
GnuPG-bug-id: 5990
Diffstat (limited to 'doc/gpg-agent.texi')
| -rw-r--r-- | doc/gpg-agent.texi | 19 |
1 files changed, 18 insertions, 1 deletions
diff --git a/doc/gpg-agent.texi b/doc/gpg-agent.texi index 98d024265..1655847bf 100644 --- a/doc/gpg-agent.texi +++ b/doc/gpg-agent.texi @@ -346,6 +346,21 @@ Do not allow clients to mark keys as trusted, i.e. put them into the @file{trustlist.txt} file. This makes it harder for users to inadvertently accept Root-CA keys. + +@anchor{option --no-user-trustlist} +@item --no-user-trustlist +@opindex no-user-trustlist +Entirely ignore the user trust list and consider only the global +trustlist (@file{@value{SYSCONFDIR}/trustlist.txt}). This +implies the @ref{option --no-allow-mark-trusted}. + +@item --sys-trustlist-name @var{file} +@opindex sys-trustlist-name +Changes the default name for the global trustlist from "trustlist.txt" +to @var{file}. If @var{file} does not contain any slashes and does +not start with "~/" it is searched in the system configuration +directory (@file{@value{SYSCONFDIR}}). + @anchor{option --allow-preset-passphrase} @item --allow-preset-passphrase @opindex allow-preset-passphrase @@ -773,7 +788,9 @@ that this file can't be changed inadvertently. As a special feature a line @code{include-default} will include a global list of trusted certificates (e.g. @file{@value{SYSCONFDIR}/trustlist.txt}). -This global list is also used if the local list is not available. +This global list is also used if the local list is not available; +the @ref{option --no-user-trustlist} enforces the use of only +this global list. It is possible to add further flags after the @code{S} for use by the caller: |