MUA "automatically signs keys"?
2014-667rhzu3dc-lists-groups at riseup.net
Thu Jan 30 01:18:40 CET 2014
-----BEGIN PGP SIGNED MESSAGE-----
On Wednesday 29 January 2014 at 5:24:36 PM, in
<mid:20140129172436.22bde6d2 at steves-laptop>, Steve Jones wrote:
> Well, it could be semi-automatic. I'm only talking
> about persona certifications, which appear to be
> understood as verifying that the key and the email
> address are under the control of the same person.
> Having your mail client being able to determine that
> the key and the email address seem to match and
> offering you a one click (plus passphrase) option to
> verify that fact would be nice.
So long as the certification applied were only a local signature, I
see a niche for this functionality (and the individual user can invest
the resulting local signatures with any meaning they wish). As soon as
those signatures are exported, it dumps more "noise" to the web of
trust for no obvious gain.
MFPA mailto:2014-667rhzu3dc-lists-groups at riseup.net
Don't talk unless you can improve on the silence
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----
More information about the Gnupg-users