security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2025-01-08 12:44:23 +01:00
Code Activity

doc: Remove some stuff for the very incomplete instguide.

Browse Source 
--
This commit is contained in:
Werner Koch 2014-09-03 09:45:20 +02:00
parent 1449a22d2e
commit a94674c54e
1 changed files with 15 additions and 29 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

38
doc/instguide.texi
View File

@ -22,7 +22,7 @@ that you are already reading this documentation we can only give some
extra hints extra hints
To comply with the rules on GNU systems you should have build time To comply with the rules on GNU systems you should have build time
configured @command{dirmngr} using: configured @command{gnupg} using:
@example @example
./configure --sysconfdir=/etc --localstatedir=/var ./configure --sysconfdir=/etc --localstatedir=/var
@ -36,19 +36,7 @@ the binaries get installed. If you selected to use the
the default then. the default then.
** Notes on setting a root CA key to trusted
** Explain how to setup a root CA key as trusted
Such questions may also help to write a proper installation guide.
[to be written]
XXX Tell how to setup the system, install certificates, how dirmngr relates
to GnuPG etc.
** Explain how to setup a root CA key as trusted
X.509 is based on a hierarchical key infrastructure. At the root of the X.509 is based on a hierarchical key infrastructure. At the root of the
tree a trusted anchor (root certificate) is required. There are usually tree a trusted anchor (root certificate) is required. There are usually
@ -64,11 +52,9 @@ contains a few root certificates. Most installations will need more.
@item @item
Let @command{gpgsm} ask you whether you want to insert a new root Let @command{gpgsm} ask you whether you want to insert a new root
certificate. To enable this feature you need to set the option certificate. This feature is enabled by default; you may disable it
@option{allow-mark-trusted} into @file{gpg-agent.conf}. In general it using the option @option{no-allow-mark-trusted} into
is not a good idea to do it this way. Checking whether a root @file{gpg-agent.conf}.
certificate is really trustworthy requires decisions, which casual
users are not up to. Thus, by default this option is not enabled.
@item @item
Manually maintain the list of trusted root certificates. For a multi Manually maintain the list of trusted root certificates. For a multi
@ -76,16 +62,16 @@ user installation this can be done once for all users on a machine.
Specific changes on a per-user base are also possible. Specific changes on a per-user base are also possible.
@end itemize @end itemize
XXX decribe how to maintain trustlist.txt and /etc/gnupg/trustlist.txt. @c decribe how to maintain trustlist.txt and /etc/gnupg/trustlist.txt.
** How to get the ssh support running @c ** How to get the ssh support running
@c
XXX How to use the ssh support. @c XXX How to use the ssh support.
@section Installation Overview @c @section Installation Overview
@c
XXXX @c XXXX