diff --git a/doc/ChangeLog b/doc/ChangeLog index b2df4ba2d..43adf6028 100644 --- a/doc/ChangeLog +++ b/doc/ChangeLog @@ -1,3 +1,11 @@ +2002-12-27 David Shaw + + * gpg.sgml: Clarify --no-permission-warning to note that the + permission warnings are not intended to be the be-all and end-all + in security checks. Add note to --group that when used on the + command line, it may be necessary to quote the argument so it is + not treated as multiple arguments. Noted by Stefan Bellon. + 2002-12-23 Werner Koch * samplekeys.asc: Updated. diff --git a/doc/gpg.sgml b/doc/gpg.sgml index 438ace247..9f7650ae1 100644 --- a/doc/gpg.sgml +++ b/doc/gpg.sgml @@ -2049,7 +2049,11 @@ Suppress the warning about "using insecure memory". --no-permission-warning -Suppress the warning about unsafe file permissions. +Suppress the warning about unsafe file permissions. Note that the +file permission checks that GnuPG does are not intended to be +authoritative, rather they simply warn about certain common permission +problems. Do not assume that the lack of a warning means that your +system is secure. @@ -2259,11 +2263,14 @@ Experimental use only. Sets up a named group, which is similar to aliases in email programs. Any time the group name is a receipient (-r or --recipient), it will be expanded to the values specified. - + The values are &ParmKeyIDs; or fingerprints, but any key description is accepted. Note that a value with spaces in it will be treated as two different values. Note also there is only one level of expansion -- you cannot make an group that points to another group. +- you cannot make an group that points to another group. When used +from the command line, it may be necessary to quote the argument to +this option to prevent the shell from treating it as multiple +arguments.