Managing the WoT with GPG

martin f krafft madduck at
Thu Jun 22 16:29:30 CEST 2017

also sprach Neal H. Walfield <neal at> [2017-06-22 16:15 +0200]:
> I didn't say that it is not possible to have a better algorithm.  It
> is possible.  But, it is not as easy as you suggest (and what you
> suggest doesn't sound trivial).
> For instance, adding or updating a key doesn't necessarily result in
> equal or more trust.  An update could cause a key to be revoked.  In
> that case, if 0xdeadbeef is marginally trusted, we now need to
> identify keys that were considered valid because of 0xdeadbeef, but no
> longer are.

This would be handled upon use of such keys. In fact, rather than
updating the trustdb on update of key material, wouldn't it make
much more sense to compute the information just-in-time? Provided
we'd have a data format allowing for fast access like this?

@martinkrafft | |
"the scientific paper in its orthodox form does embody a totally
 mistaken conception, even a travesty, of the nature of scientific
                                                -- sir peter medawar
spamtraps: madduck.bogus at
-------------- next part --------------
A non-text attachment was scrubbed...
Name: digital_signature_gpg.asc
Type: application/pgp-signature
Size: 1118 bytes
Desc: Digital GPG signature (see
URL: </pipermail/attachments/20170622/20b73a5c/attachment-0001.sig>

More information about the Gnupg-users mailing list