Exposing email addresses on key servers
faramir.cl at gmail.com
Sun Jun 28 05:09:05 CEST 2009
-----BEGIN PGP SIGNED MESSAGE-----
Jesse Cheung escribió:
> Dear all,
> I learned that public keyservers are a good way for key exchanges.
> But I am still a little concerned: after all, the UID's contain my
> email addresses so by sending my keys up I am exposing my email
> address to everybody. I'm not sure if there are spammers out there
> doing all these key queries looping over every key-id, but it sounds
> technically possible doesn't it (unless the key-id's are statistically
> _very very_ sparse)?
Indeed, there are some spammers gathering email addresses from
keyservers, but it seems (from previous discussions about that in the
list) it is not notorious among all the other spam sources...
You can also use a freeform UID, which contains name and comment, but
leave the email field empty.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----
More information about the Gnupg-users