keys.mailvelope.com (Re: Request for Discussion: new/PubKeyDistributionConcept/FallbackServer)
Bernhard Reiter
bernhard at intevation.de
Thu Jun 30 09:23:16 CEST 2016
Hi Malte,
Am Dienstag, 28. Juni 2016 18:11:16 schrieb malte at wk3.org:
> Quoting Bernhard Reiter (2016-06-28 17:16:03)
> > > https://keys.mailvelope.com
> > I gave it a brief look.
> > Is my understanding good that you don't do a crypto challenge
> > to check for the ownership of secret key.
>
> As the website (https://keys.mailvelope.com/) says:
>
> """
> Verify Yourself
>
> The server verifies email address ownership as well as private key
> ownership by sending an encrypted verification email.
> """
Ah, thanks for pointing this out.
(There was no mention of this on the detailed README.md, so I overlooked it.)
> > How did you consider privacy issues (like people in Germany demanding
> > that you delete their personal information) or spam?
>
> As the website says:
>
> """
> No Web of Trust
>
> No more key signing parties or publishing your social network online.
> You can even delete your public key at anytime. Learn more
> """
Because deletion needs verification, I can spam each email owner
by demanding deletion of the key?
How is walking the keyserver be prevented?
Best,
Bernhard
--
www.intevation.de/~bernhard +49 541 33 508 3-3
Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998
Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/attachments/20160630/41d828cc/attachment.sig>
More information about the Gnupg-devel
mailing list