HKP Client deprecated

com.openexchange.guard.forceTLSForHKPSRV

Defines if Guard should only establish secure TLS connections to HKP servers queried via DNS SVR lookup.

com.openexchange.guard.trustedPGPDirectory

Defines servers for remote public Key lookup. You can list trusted PGP Servers here, preferably servers that have verified keys. Comma separated list. Can specify port. HTTPS only on port 443. In addition it is possible to add an optional base request path; for example "hkp://example.org:11371/custom/path/to/pks/lookup?".

com.openexchange.guard.untrustedPGPDirectory

Defines servers for remote public Key lookup. You can list untrusted, public, PGP Servers here, preferably servers that have verified keys. Comma separated list. Can specify port. HTTPS only on port 443. In addition it is possible to add an optional base request path; for example "hkp://example.org:11371/custom/path/to/pks/lookup?".

com.openexchange.guard.keySources.trustLevelHKPPublicServer

The trust level for keys fetched from public HKP servers.

com.openexchange.guard.keySources.trustLevelHKPTrustedServer

The trust level for keys fetched from HKP servers marked as trusted.

com.openexchange.guard.keySources.trustLevelHKPSRVServer

The trust level for keys fetched from HKP servers queried via SRV DNS record.

com.openexchange.guard.keySources.trustLevelHKPSRVDNSSECServer

The trust level for keys fetched from HKP servers queried via DNSSEC protected SRV DNS record.