diff options
| author | Sean Whitton <spwhitton@spwhitton.name> | 2019-09-06 07:03:56 -0700 |
|---|---|---|
| committer | Sean Whitton <spwhitton@spwhitton.name> | 2019-09-06 07:03:56 -0700 |
| commit | e73cee37bff56c4e3f5fed99c53a3b859dce4044 (patch) | |
| tree | 1559a1b12ad92723cbbba97e91a39fc394ff2419 /email-extract-openpgp-certs.1.pod | |
| parent | 2029d4a51f82a4d27d0e75106bd4107b77719e40 (diff) | |
| parent | 1cb54e1d5000856bfedd98c5cf4274aa411e44c3 (diff) | |
| download | mailscripts-e73cee37bff56c4e3f5fed99c53a3b859dce4044.tar.gz | |
Merge tag 'debian/0.10-1' into buster-bpo
mailscripts release 0.10-1 for unstable (sid) [dgit]
[dgit distro=debian no-split --quilt=linear]
# gpg: Signature made Tue 30 Jul 2019 05:29:55 AM MST
# gpg: using RSA key 9B917007AE030E36E4FC248B695B7AE4BF066240
# gpg: Good signature from "Sean Whitton <spwhitton@spwhitton.name>" [ultimate]
# Primary key fingerprint: 8DC2 487E 51AB DD90 B5C4 753F 0F56 D055 3B6D 411B
# Subkey fingerprint: 9B91 7007 AE03 0E36 E4FC 248B 695B 7AE4 BF06 6240
Diffstat (limited to 'email-extract-openpgp-certs.1.pod')
| -rw-r--r-- | email-extract-openpgp-certs.1.pod | 57 |
1 files changed, 57 insertions, 0 deletions
diff --git a/email-extract-openpgp-certs.1.pod b/email-extract-openpgp-certs.1.pod new file mode 100644 index 0000000..9983de0 --- /dev/null +++ b/email-extract-openpgp-certs.1.pod @@ -0,0 +1,57 @@ +=head1 NAME + +email-extract-openpgp-certs - extract OpenPGP certificates from an e-mail + +=head1 SYNOPSIS + +B<email-extract-openpgp-certs> <B<message.eml> | B<gpg> B<--import> + +=head1 DESCRIPTION + +B<email-extract-openpgp-certs> extracts all the things it can find +that look like they might be OpenPGP certificates in an e-mail, and +produces them on standard output. + +It currently knows about how to find OpenPGP certificates as +attachments of MIME type application/pgp-keys, and Autocrypt: style +headers. + +=head1 OPTIONS + +None. + +=head1 EXAMPLE + +=over 4 + + $ notmuch show --format-raw id:b7e48905-842f@example.net >test.eml + $ email-extract-openpgp-certs <test.eml | gpg --import + +=back + +=head1 LIMITATIONS + +B<email-extract-openpgp-certs> currently does not try to decrypt +encrypted e-mails, so it cannot find certificates that are inside the +message's cryptographic envelope. + +B<email-extract-openpgp-certs> does not attempt to validate the +certificates it finds in any way. It does not ensure that they are +valid OpenPGP certificates, or even that they are of a sane size. It +doeds not try to establish any relationship between the extracted +certificates and the messages in which they are sent. For example, it +does not check the Autocrypt addr= attribute against the message's From: +header. + +Importing certificates extracted from an arbitrary e-mail in this way +into a curated keyring is not a good idea. Better to extract into an +ephemeral location, inspect, filter, and then selectively import. + +=head1 SEE ALSO + +gpg(1), https://autocrypt.org, https://tools.ietf.org/html/rfc4880, https://tools.ietf.org/html/rfc3156 + +=head1 AUTHOR + +B<email-extract-openpgp-certs> and this manpage were written by Daniel +Kahn Gillmor, with guidance and advice from many others. |