Plan B - Who carries the torch?
jeandavid8 at verizon.net
Tue Jan 5 14:50:59 CET 2021
On 1/5/21 8:24 AM, Konstantin Ryabitsev wrote:
> On Tue, Jan 05, 2021 at 07:27:14AM -0500, Jean-David Beyer via Gnupg-users wrote:
>> Building a web of trust is so hopeless, from my point of view, that I have
>> abandonned gnupg. I have made keys for myself, obtained enigmail for my
>> Firefox browser, etc. But those with whom I correspond by e-mail has
>> diminished to almost the vanishing point. They use text messages on their
>> cell phones, Facebook messages, etc. While a few worry about the "CIA"
>> snooping on them, none will consider gnupg and enigmail. So for me, it is
>> .~. Jean-David Beyer
>> /V\ Shrewsbury, New Jersey
>> /( )\ Red Hat Enterprise Linux
>> ^^-^^ up 4 days, 13 hours, 37 minutes
> I noticed your signature, so I must point out that RHEL and the Linux Kernel
> development process rely heavily on GnuPG and the web of trust. Every time you
> update packages on your system, large parts of the supply chain were verified
> using GnuPG, relying on the integrity of the trust store shipped with RHEL.
> So, you may not see it in your person-to-person communication, but you use
> GnuPG every day.
I sit corrected:
$ rpm -qf /usr/bin/gpg
I posted, not so much to criticize GnuPG as to criticize my associates
who talk security paranoia, but refuse to do anything about it. When all
is said and done, more is said than done. At least, with my associates.
.~. Jean-David Beyer
/V\ Shrewsbury, New Jersey
/( )\ Red Hat Enterprise Linux
^^-^^ up 4 days, 15 hours, 2 minutes
More information about the Gnupg-users