keys.openpgp.org not sending confirmation email
sac at 300baud.de
Tue Sep 17 21:58:38 CEST 2019
> Actually, I currently don't know anybody who I could ask to sign my
> keys, and furthermore, the problem is bigger the other way around. Can I
> trust the key which I found on the key server for the intended
> recipient's email address? Can I at least be sure that the key server
> has sent a confirmation email to that email address and has received the
> answer? Or has it failed to do so due to a malformed email address, but
> finds that address nevertheless because it performs a full-text search
> against the key IDs?
If you would use your real name in your UID you could let Governikus
certify your key. Governikus is a German CA run on behalf by the BSI.
For that you will need a (certified) ID-card reader and AusweisApp2.
Regarding the other questions, it would be IMHO really nice if we
would have internationally more CAs for GnuPG users, thus one must
not rely on the classical WoT signatures.
certified OpenPGP key blocks available on keybase.io/stefan_claas
More information about the Gnupg-users