[pkg-gnupg-maint] Bug#888025: gpgsm: UI asks insane, unanswerable trust questions
chris
inkbottle007 at gmail.com
Fri Mar 31 01:18:55 BST 2023
Dear maintainer,
I've recently started to re-experience that bug (#888025), probably because
someone is sending me emails using some "certificate".
It is in the form of a popups when Kmail is opened in the background. Those
popups come randomly without user action.
I understand it would be useless to answer yes to the popup. Additionally, it
doesn't seem legit/safe at all, for someone who doesn't have the necessary
knowledge, to answer yes to "do you ultimately trust XXX to correctly certify
user certificates?"
I've read the explanations/comments in the bug, but I didn't understand
anything, sorry.
The certificate in the popup is the same as this one:
```
$ awk -v cmd='openssl x509 -noout -subject' '/BEGIN/{close(cmd)};{print |
cmd}' < /etc/ssl/certs/ca-certificates.crt | grep 'Manchester.*AAA'
subject=C = GB, ST = Greater Manchester, L = Salford, O = Comodo CA Limited,
CN = AAA Certificate Services
```
I've been told to try: `sudo dpkg-reconfigure ca-certificates`, but that didn't
change anything.
It won't crash the system, but it's very very annoying/disruptive for the
user.
Thanks,
Chris
More information about the pkg-gnupg-maint
mailing list