I'm pondering how to improve multiple keyring support.
The main ideas:
remailer keys should go on their own ring, which is
only searched when we're rewriting for a remailer chain
it should be possible to make the user's private
keyring separate from their public one, so the private
keys are only searched during decrypt/sign operations.
This would make it easier to, say, keep the private key
on a removable floppy.
Keyfetching should allow the user to specify where the
key should be added. This requires better control on
the backend (e.g., I've never figured out how to make
gnupg do this the way I want it to).