key signing

Adrian 'Dagurashibanipal' von Bidder
Fri Jan 3 12:48:01 2003

Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

On Thu, 2003-01-02 at 15:18, Tuyen DINH wrote:
> Hello,
> When you want to sign a key you have just imported, in which cases will
> you choose one the following choices :
> =20
>    (0) I will not answer. (default) ?

My personal feeling is that this is mostly obsolete - all signatures
*should* fit into the 1-3 schema. But then, there may be special
applications where these do not fit and perhaps a 0 with a policy URL
(or notation) explaining the special circumstances makes more sense

>    (1) I have not checked at all.   ?

 - as David said: when you don't care who is behind this key, but you
want to make a statement about 'the person behind that key (whoever this
 - (can be seen as application of the above): recently, a robotCA was
created: it signs keys and verifies email addresses only (of course,
being fully automatic, it can't do more).

-- vbi

get my gpg key here:

Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

Version: GnuPG v1.2.1 (GNU/Linux)

Signature policy: