searching for keys

Larry Brower ivangrunt09 at gmail.com
Sun Jul 14 03:20:16 CEST 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1





On Sat, Jul 13, 2013 at 4:56 PM, kardan <kardan at riseup.net> wrote:
Hi,

When I search for a key via browser on [1] I get an unencrypted answer
from [2]. This happens for some keys that are onlyavailable on some
servers. The problem is that the info, whose key I am
searching is presented to sniffers in plaintext. I think the encrypted
pool should not forward to unencrypted web interfaces.

[1] https://hkps.pool.sks-keyservers.net/
[2] http://keyserver.stack.nl


http://keyserver.stack.nl also uses SSL. Is your main t that someone will
see the keys you are looking for or retrieving?
If this is the case then why not have them send them to you encrypted via
email?



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
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=0ofg
-----END PGP SIGNATURE-----
-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/attachments/20130713/4584fefd/attachment.html>


More information about the Gnupg-users mailing list