How to find and verify a trust path?
Hauke Laging
mailinglisten at hauke-laging.de
Tue Sep 17 16:29:08 CEST 2013
Am Di 17.09.2013, 10:17:11 schrieb Daniel Kahn Gillmor:
> No, it doesn't sound right because one key ≠ one person. It is possible
> for one person to hold many keys.
>
> If I hold n keys, and i certify with all of them, and you grant all my
> keys marginal ownertrust, then all it takes is 1 person to be deceived
> (me) and you will be misled.
Thus quite some time ago somebody (not me) asked for a new feature (without
success): Keys should be grouped by their owner so that each person's
certifications are counted once only.
Hauke
--
Crypto für alle: http://www.openpgp-schulungen.de/fuer/bekannte/
OpenPGP: 7D82 FB9F D25A 2CE4 5241 6C37 BF4B 8EEF 1A57 1DF5
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 572 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/attachments/20130917/b773c722/attachment.sig>
More information about the Gnupg-users
mailing list