Default to HKPS, not HKP
Open, NormalPublic


If a keyserver URI is specified with no scheme, gnupg defaults to using HKP on port 11371. keyserver traffic is even more than other traffic something that shouldn't be plaintext, so I would welcome a change to default to HTTPS, requiring users who want to use a plaintext transport to be explicit about it.


Valodim created this task.May 10 2019, 2:13 PM
werner triaged this task as Normal priority.

A possible exception here is that .onion TLDs should stick with HKP by default

tianon added a subscriber: tianon.Jul 3 2019, 3:59 PM
steve added a subscriber: steve.Jul 3 2019, 4:52 PM