Noticed that an attempt to access my GPG Keychain was made every
time I opened the Gnupg-users mailing I'm newly receiving. Then
noticed that several of the names of people who were inserted into
my GPG Keychain are regulars on the same Gnupg-users mailing. I
must have accidentally granted access which permitted adding keys
to my Keychain. I'll be more careful about that in the future.
But still, I'm put off that this would happen without first
asking. Deleted unsolicited keys and unsubscribed from mailing.
jon closed this discussion
on 15 Mar, 2014 04:49 AM.
Steve re-opened this discussion
on 11 Sep, 2017 03:26 PM
Steve on 11 Sep, 2017 03:26 PM
sorry, this one slipped through the cracks. Excuse the super-late reply!
The behavior you described is due to the auto-key retrieve setting. When you receive a signed message, gpg automatically looks for the public key to verify that signature. You can easily change that setting in GPGPreferences / GPG Suite > Settings.