# block webbug + in case --fetch-keys is used for WoT
keyserver-options no-honor-keyserver-url,no-self-sigs-only

# ease key verification with all information
keyid-format 0xLONG
with-fingerprint

# trust on first use to have statistics on how often the key has been seen
trust-model tofu+pgp
# don't assign positive trust value first time keys are seen, in case there
# is a trusted key as root for Web of Trust
tofu-default-policy unknown