monkeysphere-authentication should be able to use hkps
I'd like to be able to make monkeysphere-authentication query its keyservers via HKP-over-TLS (a.k.a. "HKPS").
This should be as simple as something like setting @KEYSERVER=hkps://zimmermann.mayfirst.org@ in @/etc/monkeysphere/monkeysphere-authentication.conf@
However, the admin should probably also specify the trust anchor for this HKPS connection (since we don't have a way to use our OpenPGP keyring as a trust anchor).
One solution would be to expose the m-a gpg conf file, and let admins set @keyserver-options ca-cert-file@ explicitly there (as well as any other keyserver options).
the downside with that is that it binds monkeysphere-authentication to gpg forever, or at least trying to support a range of wacky possible syntax from a @gpg.conf@ file.
another solution would be to offer an @X509_TRUST_ANCHOR@ option in @monkeysphere-authentication.conf@, which admins could set explicitly.
(from redmine: created on 2010-02-23, closed on 2010-03-14)