security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2024-06-28 02:12:46 +02:00
Code Activity

* gpg.sgml: Document --require-secmem/--no-require-secmem. Note that the

Browse Source 
sign flags (l, t, nr) can be mixed.  Remove --nrsign-key.
This commit is contained in:
David Shaw 2004-12-16 06:01:19 +00:00
parent e79f2db8e4
commit 60d1c12048
2 changed files with 37 additions and 31 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
doc/ChangeLog
View File

@ -1,3 +1,8 @@
2004-12-16 David Shaw <dshaw@jabberwocky.com>
* gpg.sgml: Document --require-secmem/--no-require-secmem. Note
that the sign flags (l, t, nr) can be mixed. Remove --nrsign-key.
2004-12-12 Werner Koch <wk@g10code.com> 2004-12-12 Werner Koch <wk@g10code.com>
* samplekeys.asc, mksamplekeys (keys): Removed my old 621CC013 key * samplekeys.asc, mksamplekeys (keys): Removed my old 621CC013 key

63
doc/gpg.sgml
View File

@ -271,11 +271,12 @@ For each signature listed, there are several flags in between the
each signature. From left to right, they are the numbers 1-3 for each signature. From left to right, they are the numbers 1-3 for
certificate check level (see --ask-cert-level), "L" for a local or certificate check level (see --ask-cert-level), "L" for a local or
non-exportable signature (see --lsign-key), "R" for a nonRevocable non-exportable signature (see --lsign-key), "R" for a nonRevocable
signature (see --nrsign-key), "P" for a signature that contains a signature (see the --edit-key command "nrsign"), "P" for a signature
policy URL (see --cert-policy-url), "N" for a signature that contains that contains a policy URL (see --cert-policy-url), "N" for a
a notation (see --cert-notation), "X" for an eXpired signature (see signature that contains a notation (see --cert-notation), "X" for an
--ask-cert-expire), and the numbers 1-9 or "T" for 10 and above to eXpired signature (see --ask-cert-expire), and the numbers 1-9 or "T"
indicate trust signature levels (see the --edit-key command "tsign"). for 10 and above to indicate trust signature levels (see the
--edit-key command "tsign").
</para></listitem></varlistentry> </para></listitem></varlistentry>
@ -328,32 +329,23 @@ related tasks:</para>
<varlistentry> <varlistentry>
<term>sign</term> <term>sign</term>
<listitem><para> <listitem><para>
Make a signature on key of user &ParmName; Make a signature on key of user &ParmName; If the key is not yet
If the key is not yet signed by the default signed by the default user (or the users given with -u), the program
user (or the users given with -u), the displays the information of the key again, together with its
program displays the information of the key fingerprint and asks whether it should be signed. This question is
again, together with its fingerprint and repeated for all users specified with
asks whether it should be signed. This -u.</para></listitem></varlistentry>
question is repeated for all users specified
with -u.</para></listitem></varlistentry>
<varlistentry> <varlistentry>
<term>lsign</term> <term>lsign</term>
<listitem><para> <listitem><para>
Same as --sign but the signature is marked as Same as "sign" but the signature is marked as non-exportable and will
non-exportable and will therefore never be used therefore never be used by others. This may be used to make keys
by others. This may be used to make keys valid valid only in the local environment.</para></listitem></varlistentry>
only in the local environment.</para></listitem></varlistentry>
<varlistentry> <varlistentry>
<term>nrsign</term> <term>nrsign</term>
<listitem><para> <listitem><para>
Same as --sign but the signature is marked as non-revocable and can Same as "sign" but the signature is marked as non-revocable and can
therefore never be revoked.</para></listitem></varlistentry> therefore never be revoked.</para></listitem></varlistentry>
<varlistentry>
<term>nrlsign</term>
<listitem><para>
Combines the functionality of nrsign and lsign to make a signature
that is both non-revocable and
non-exportable.</para></listitem></varlistentry>
<varlistentry> <varlistentry>
<term>tsign</term> <term>tsign</term>
<listitem><para> <listitem><para>
@ -362,6 +354,15 @@ of certification (like a regular signature), and trust (like the
"trust" command). It is generally only useful in distinct communities "trust" command). It is generally only useful in distinct communities
or groups. or groups.
</para></listitem></varlistentry> </para></listitem></varlistentry>
</variablelist>
<para>
Note that "l" (for local / non-exportable), "nr" (for non-revocable,
and "t" (for trust) may be freely mixed and prefixed to "sign" to
create a signature of any type desired.
</para>
<variablelist>
<varlistentry> <varlistentry>
<term>revsig</term> <term>revsig</term>
<listitem><para> <listitem><para>
@ -573,13 +574,6 @@ non-exportable. This is a shortcut version of the subcommand "lsign"
from --edit. from --edit.
</para></listitem></varlistentry> </para></listitem></varlistentry>
<varlistentry>
<term>--nrsign-key &ParmName;</term>
<listitem><para>
Signs a public key with your secret key but marks it as non-revocable.
This is a shortcut version of the subcommand "nrsign" from --edit.
</para></listitem></varlistentry>
<varlistentry> <varlistentry>
<term>--delete-key &ParmName;</term> <term>--delete-key &ParmName;</term>
<listitem><para> <listitem><para>
@ -2382,6 +2376,13 @@ supressed on the command line.
Suppress the warning about missing MDC integrity protection. Suppress the warning about missing MDC integrity protection.
</para></listitem></varlistentry> </para></listitem></varlistentry>
<varlistentry>
<term>--require-secmem</term>
<term>--no-require-secmem</term>
<listitem><para>
Refuse to run if GnuPG cannot get secure memory. Defaults to no
(i.e. run, but give a warning).
</para></listitem></varlistentry>
<varlistentry> <varlistentry>
<term>--no-armor</term> <term>--no-armor</term>