LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

On keys, trust, and webs

On keys, trust, and webs

Posted Oct 7, 2011 13:38 UTC (Fri) by jake (editor, #205)
In reply to: On keys, trust, and webs by neilbrown
Parent article: On keys, trust, and webs

> Are you really saying that you don't trust it, or that your gpg tool
> tells you that you don't trust it?

well, it was meant flippantly (thus the smiley), but, yes, what I meant was that GPG did not trust the key ...

I don't think keysigning parties are the only way to get signatures ... Jon and I verified fingerprints over the phone recently, for example. Sending me a signed email with info that only the entity I know as "Neil Brown" (who ever you are in real life :) would know would go a long way toward establishing the connection between that key and that entity ... enough that I might be willing to sign the key for example ...

jake

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds