Re: [Tails-dev] [review'n'merge:1.2.1]feature/7512-Make-GnuP…

Delete this message

Reply to this message
Author: Daniel Kahn Gillmor
Date:  
To: The Tails public development discussion list
CC: Clint Adams
Subject: Re: [Tails-dev] [review'n'merge:1.2.1]feature/7512-Make-GnuPG-config-closer-to-duraconf-reworked
On Tue 2014-10-21 11:16:20 +0200, intrigeri wrote:
> hokey lint's output is also, I would argue, way easier to understand
> and draw conclusions from; colors help. So, basically, `hokey lint' is
> IMO the best available tool right now for anyone to do a lot of basic
> sanity checks on their keys. It's probably still "arcane", but we
> simply haven't anything better to achieve these goals yet.
>
> [1] https://help.riseup.net/en/security/message-security/openpgp/best-practices


I have to agree with intrigeri on this. It's been ages since anyone has
tried to write something that a regular human can even consider using to
get this kind of "just tell me what i need to fix" tool, so i was really
happy to see Clint Adams (cc'ed here) step up and produce hopenpgp-tools
to do this.

Anyone interested in making a more user-friendly front-end to the data
provided by hokey --lint would also make me very happy. Maybe a simple
python3 + gtk3 application to start, followed up by clickable buttons to
take any suggested corrective action.

I suspect that Clint could be convinced to provide a more
machine-parseable format (json?) of hokey --lint output, if that would
make such a user-friendly frontend easier to write.

--dkg

[disclaimer: i've contributed in small ways to both hopenpgp-tools and
to the OpenPGP best practices cited above, so i might be biased, but i
really haven't seen anything better in the wild]