Bogus Key on Keyservers
David Shaw
dshaw at jabberwocky.com
Fri Oct 14 17:02:34 CEST 2005
On Fri, Oct 14, 2005 at 09:51:22AM -0500, Tad Marko wrote:
> > GPG and PGP don't care about names -- they only care about public keys.
> > If you want someone to be able to send a message to the right person,
> > you need to make sure they're encrypting it with the right public key.
> >
> > You do this by telling them your key's signature before they go looking
> > on the keyserver.
>
> Right. But, an email verified mechanism for removing keys stamped with
> an email address seems like an important omission from the key server system.
Use ldap://keyserver.pgp.com. It does email verification. However,
it does not (for obvious reasons) sync with the other keyservers.
David
More information about the Gnupg-users
mailing list