[pkg-gnupg-maint] Bug#623539: GnuPG 2.0 and gnome-keyring

NIIBE Yutaka gniibe at fsij.org
Wed Apr 15 02:59:12 UTC 2015


Hello,

On 04/14/2015 09:38 PM, Josselin Mouette wrote:
> Sorry, I was under the impression this was a discussion about actually
> improving the situation, not about Debian being used as a playground for
> petty complaints about other upstreams. 
> 
> If you want to disable this functionality on your system, you can edit
> or remove /etc/xdg/autostart/gnome-keyring-gpg.desktop, but we are not
> going to meddle in your affairs (or lack thereof) with GNOME developers
> by removing features from Debian packages. 

I'd understand your position.  GnuPG maintainers and/or Debian team
for GnuPG should keep communicating GNOME developers for this issue.
We will.

On the other hand, shall we consider from viewpoint of Debian *users*?

I think that for Debian users, the gpg-agent feature of
gnome-keyring's is questionable since its implementation is immature
and causes troubles.

The only possible benefit with this feature for users would be
coherency for look&feel of dialog box in a desktop environment.

Downside is non-working OpenPGPcard (which is most popular in Debian
users than other distro users, I suppose), weaker S2K (which is pretty
important thing for Debian users), bad for gpgsm, and incompatibility
to GnuPG 2.1 private key handling.

It is unfortunate to force users into this dilemma between good
look&feel and good functionality/security.  This should be eventually
solved by upstreams.

I think that default should be good functionality/security than
look&feel.

It still make sense to offer a choice to users, but I think that the
default for Debian users is better to have

	OnlyShowIn=

in /etc/xdg/autostart/gnome-keyring-gpg.desktop by removing
"GNOME;Unity;MATE;".  I know, the origin of the file is from upstream
of gnome-keyring, but, I believe that it is better default for any
desktop environment for Debian users.

How about this default change in gnome-keyring in Debian?
-- 



More information about the pkg-gnupg-maint mailing list