signing a robot's key - was: Re: Global Directory signatures
Atom 'Smasher'
atom at suspicious.org
Thu Dec 30 22:30:28 CET 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On Thu, 30 Dec 2004, David Shaw wrote:
> Still, how would you go about checking the identity of a key that
> identifies itself only as "PGP Global Directory Verification Key" ? I
> can certainly understand that you signed the Robot CA key, but signing
> the GD key seems to be a leap of faith rather than actual hard
> knowledge.
====================
if nothing else, such unverifiable signatures on a robot's key could serve
as a list of who isn't doing a good job of checking when they sign keys.
what to do with that list is an exercise left to the reader...
- --
...atom
_________________________________________
PGP key - http://atom.smasher.org/pgp.txt
762A 3B98 A3C3 96C9 C6B7 582A B88D 52E4 D9F5 7808
-------------------------------------------------
"Those who will not reason, are bigots,
those who cannot, are fools,
and those who dare not, are slaves."
-- George Gordon Noel Byron (Lord Byron)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (FreeBSD)
Comment: What is this gibberish?
Comment: http://atom.smasher.org/links/#digital_signatures
iQEcBAEBCAAGBQJB1HN5AAoJEAx/d+cTpVcisaoIALCCbKfdMu4y/TCFRwliKUJI
2aE8HH+zrRB6xPnlKZSF0EZ8Ekz63jVsFVK8HcKQUGngIW6hD2aYCkfqp23jIoYO
MF8Im/srxThKDCCzbgpiVIz6YP5Bsbxiq0UIi+QQbz0BksW0aDPD7Oyy+syUfSK7
+3J6gt14qBI0D5DAZyElc+DgySWgCs/egxiYjRx0uqa/aOrsRI1CV/+LrVcRMVDe
R6gXT3XsuI9YNUxVPtJNNhaxaYFRQ6RdN44Jcxx6i59agUvnqOJwwW9yrstzDnVF
iuGJirNaZDKB1HFPv9Vjmvao2+Dh4yRIOk4r92sgVP+PXXhl3aikEZmScqV6S48=
=rQmw
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list