making the X.509 infrastructure available for OpenPGP

MFPA 2014-667rhzu3dc-lists-groups at riseup.net
Thu Feb 6 20:20:15 CET 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Thursday 6 February 2014 at 6:29:35 PM, in
<mid:20140206102935.Horde.-aF3gSq0xd6sXqnZGe2iGw3 at mail.sixdemonbag.org>,
Robert J. Hansen wrote:

> You are free to redefine black as white while you're at
> it.

Thanks, I'm sure it will come in handy some day.



> When you decide which certificates to accept, you are
> serving as your own CA.

No I am not. An example of a similarly false statement would be "When
a trader does not employ an accountant he is serving as his own
accountant."



> When you outsource this to someone else, that other person or agency
> is serving as your CA.

So Mozilla serves as the CA for most Firefox users, because Mozilla
makes the decision which root certificates to trust.



> But no matter how you slice it, there's still a CA in the picture.

Except where the individual makes the decisions themself without
referring/deferring to an authority.



- --
Best regards

MFPA                    mailto:2014-667rhzu3dc-lists-groups at riseup.net

Wise men learn many things from their enemies.
-----BEGIN PGP SIGNATURE-----

iPQEAQEKAF4FAlLz4HpXFIAAAAAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0
N0VDQTAzAAoJEKipC46tDG5pyI0EAMd7+wRJuAYxK2Alb9DigN39ZfNqAcjhA8nX
REQaUF581+bKVtKG7WYsE4N9e+1s4DipoIOfDTQ/Os8qtf2DXyAAcokWWRoAe3w7
qG9wXxS3dyWcj1jWyqZfgqSXfE1o85TXd7dsvpxwUsxxQCOQxfM18IG7966H+5NP
uo4BQb85
=kiaJ
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list