mailto with pgp fingerprint
2014-667rhzu3dc-lists-groups at riseup.net
Fri Jul 25 16:36:24 CEST 2014
-----BEGIN PGP SIGNED MESSAGE-----
On Friday 25 July 2014 at 3:12:58 PM, in
<mid:20140725101258.a18ae6eadac2f5426df7c59c at gmail.com>, Thomas
> While PGP Global Directory provides for some basic
> level of "this email address belongs to this key"...
> its key signing policy leads to "cruft" buildup.
Yes, I wasn't promoting it. Just replying to Steve's post about
keyservers verifying UIDs by sending emails being a "nice solution"
and had it been discussed - by showing him that it had actually been
tried and there is an instance publicly available. I was hoping that
Steve would then search for discussions on "PGP Global Directory" to
see arguments for and against, or maybe that somebody would briefly
> Back in April 2011 I signed up for it and got a series
> of key signatures every few weeks until January 2012
> when I got fed up with it. There are now 14 expired
> signatures 'stuck' on my key and published to the
And I guess these have been leaked onto the networked keyservers,
rather than being confined to PGP Global Directory? I never really saw
the point of those signatures from the directory: if it was listed
there, it had been verified in the last six months, and once a user
had downloaded and used it for communication, they knew whether or not
MFPA mailto:2014-667rhzu3dc-lists-groups at riseup.net
Courage is not the absence of fear, but the mastery of it.
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----
More information about the Gnupg-users