hashed user IDs [was: Re: Security of the gpg private keyring?]

MFPA expires2011 at ymail.com
Sat Mar 12 20:00:39 CET 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Wednesday 9 March 2011 at 1:46:53 PM, in
<mid:201103091446.53974.mailinglisten at hauke-laging.de>, Hauke Laging
wrote:


>If you want to validate a key by its signatures
> and see a signature of an unknown key then there is
> (IMHO) no reason why you should know who has certified
> this key. This information can easily be abused.

Information that has no use to you in the task in hand is just
"noise." If it is information about me for which you have no
legitimate use, I would rather it were not at your disposal in case of
possible nefarious use.


- --
Best regards

MFPA                    mailto:expires2011 at ymail.com

Keep them dry and don't feed them after midnight
-----BEGIN PGP SIGNATURE-----

iQE7BAEBCgClBQJNe8LqnhSAAAAAAEAAVXNpZ25pbmdfa2V5X0lEIHNpZ25pbmdf
a2V5X0ZpbmdlcnByaW50IEAgIE1hc3Rlcl9rZXlfRmluZ2VycHJpbnQgQThBOTBC
OEVBRDBDNkU2OSBCQTIzOUI0NjgxRjFFRjk1MThFNkJENDY0NDdFQ0EwMyBAIEJB
MjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0N0VDQTAzAAoJEKipC46tDG5pOl4D/jx2
3yMqLREYequSYhS5lOMyF+i7ItZADI2k74Cj6IzOowSQqrEk2G6wX8xmwI8vBVTP
3VK41B/haudCg9L7B0pQI1YYT2Fjlyb8by1DiN8UOPpq4KJJEt+wvs+oMtq1DmYW
w6gJIphvNKu1ZTifXfBZmBsNc4CvCVTe4jLcH4XU
=P5Kp
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list