AW: Robot CA at toehold.com
Adrian 'Dagurashibanipal' von Bidder
Sat Dec 7 12:46:02 2002
On Fri, 2002-12-06 at 18:01, Kyle Hasselbacher wrote:
> On Fri, Dec 06, 2002 at 10:37:28AM -0600, Kyle Hasselbacher wrote:
> >[periodic challenges]
> On second thought, I'd rather expire signatures and make people get new
> ones. If your service goes away and stops challenging the users, then th=
> signatures hang around forever. I'd rather they all expire forever.
That's why I'd have the signatures expire after a relatively long time
(5 years or so). So, if the service goes away, there's only a limited
window where any damage can be done.
I think 5 years is reasonable - not many people I've known have changed
their email address frequently, especially the private email address.
this email is protected by a digital signature: http://fortytwo.ch/gpg
NOTE: keyserver bugs! get my key here: https://fortytwo.ch/gpg/92082481
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
-----END PGP SIGNATURE-----
Signature policy: http://fortytwo.ch/legal/gpg/email.20020822