[Bug 262174] gpg.conf options in Committer's handbook should be reviewed/updated

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=262174

            Bug ID: 262174
           Summary: gpg.conf options in Committer's handbook should be
                    reviewed/updated
           Product: Documentation
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: Documentation
          Assignee: doc@FreeBSD.org
          Reporter: matteo@FreeBSD.org

The committer's handbook suggests using some specific options for GnuPG to
generate a key (see
https://docs.freebsd.org/en/articles/committers-guide/#pgpkeys).

These options should be reviewed and possibly updated, because they have some
issues:

* some of them are defaults (fixed-list-mode, verify-options show-uid-validity,
list-options show-uid-validity, at least as far as I can tell);

* some of them only impact the output of gpg, so may not be needed, and at the
very least should be put next to each other, not mixed with others that impact
key preferences (all the above);

* some are a bit obsolete (default-prefs does not include anything for AEAD,
nor any Camellia algorithm);

* some are a bit dangerous (cert-digest-algo SHA512 may break the OpenPGP
protocol and its use is discouraged in the GnuPG docs);

* some are very weird (what is issuer-fpr@notations.openpgp.fifthhorseman.net
?)

* none are commented, nor there is a link to the GnuPG doc
(https://www.gnupg.org/documentation/manuals/gnupg/GPG-Options.html

-- 
You are receiving this mail because:
You are the assignee for the bug.