Re: ISO md5sum signing paranoia
The idea is that either YOU meet these people, or that somebody you trust did
it for you, or that somebody you trust knows somebody he trusts who knows
this trusty gal, who had a relation with a bloke, who met the guy at this
congress wich he now trusts.
Yes, that is the idea of signing the keys by CA. It seems gpg supports this:
<quote>
gpg: WARNING: This key is not certified with a trusted signature!
</quote>
Does it mean that the key is certified, but I miss key of certificator; then
I'd like to know where to get this certificate authority key; OR does it mean
this key is not certified at all?
Vit
Reply to: