search

tnt / ansible-gpg-import-module

Ansible module for managing GPG-keys
32 stars 9 forks source link

Fingerprint verification #5

Closed sedrubal closed 7 years ago

sedrubal commented 8 years ago

Great idea :D

But I think there should be a variable

 - key_fp: "0123 4567 89AB CDEF 0123  4567 89AB CDEF 0123 4567"

To verify the imported key (protection against man in the middle).

joelnb commented 7 years ago

Wouldn't gpg check this automatically if you just specify the full fingerprint as the key id? Or are you suggesting a further check than that?

- key_id: "0123 4567 89AB CDEF 0123  4567 89AB CDEF 0123 4567"
sedrubal commented 7 years ago

I didn't know, that you can specify keys by their full fingerprint. So this is exactly what I was looking for. Thanks.