MUA "automatically signs keys"?

MFPA 2014-667rhzu3dc-lists-groups at riseup.net
Thu Jan 30 01:18:40 CET 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Wednesday 29 January 2014 at 5:24:36 PM, in
<mid:20140129172436.22bde6d2 at steves-laptop>, Steve Jones wrote:



> Well, it could be semi-automatic. I'm only talking
> about persona certifications, which appear to be
> understood as verifying that the key and the email
> address are under the control of the same person.
> Having your mail client being able to determine that
> the key and the email address seem to match and
> offering you a one click (plus passphrase) option to
> verify that fact would be nice.

So long as the certification applied were only a local signature, I
see a niche for this functionality (and the individual user can invest
the resulting local signatures with any meaning they wish). As soon as
those signatures are exported, it dumps more "noise" to the web of
trust for no obvious gain.


- --
Best regards

MFPA                    mailto:2014-667rhzu3dc-lists-groups at riseup.net

Don't talk unless you can improve on the silence
-----BEGIN PGP SIGNATURE-----

iPQEAQEKAF4FAlLpmmxXFIAAAAAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0
N0VDQTAzAAoJEKipC46tDG5pz1QD/1VQrX52KpK/kNfsZl4A3QZJWYN2CznnaZo+
d1D4y8OZ4zcQOh2fCsraR8sXHU5/U6ctgpX7sBT9BbTYFCI1zAkkpRGR3iTpXDFy
RpzJ3B9LamYlS5GYR8EjK+n/wKVbPn44WcwCx17mampyk2QLq5j+g4W+xynvPc5G
6OESu2eg
=8u5b
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list