how to configure default sign key for particular user?
MFPA
2014-667rhzu3dc-lists-groups at riseup.net
Mon May 9 02:44:19 CEST 2016
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On Monday 9 May 2016 at 12:14:09 AM, in
<mid:20160508231409.GA24983 at smemsh.net>, Scott Mcdermott wrote:
> (aside: the default key selected for a userid should
> probably be
> the later key anyways, I would think, under the
> assumption that
> one always want to use the newer key, not the oldest
> one.)
That would enable a "denial of service" attack: I publish a key
containing your email address in a UID, people encrypt to my newer key
instead of your older key.
- --
Best regards
MFPA <mailto:2014-667rhzu3dc-lists-groups at riseup.net>
The second mouse gets the cheese
-----BEGIN PGP SIGNATURE-----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=
=lpNo
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list