[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: PGP Key Signing HOWTO: preparation for Linux Expo

>>"Wichert" == Wichert Akkerman <wichert@cs.leidenuniv.nl> writes:

 Wichert> Others signature don't convince me. However the fingerprint
 Wichert> I still had here which you gave me combined with the fact
 Wichert> that I got see your ID does.

        Even then, you are assuming that the person whose ID you saw
 is still in control of the key that you signed. That may well be the
 case, but it is still a weaker assurance (what if someone got hold of
 the old pass phrase, created a new key, signed with the old key, and
 sent you a mail asking you to sighn the new key?)

 aka paranoid
 A transistor protected by a fast-acting fuse will protect the fuse by
 blowing first.
Manoj Srivastava   <srivasta@debian.org>  <http://www.debian.org/%7Esrivasta/>
Key C7261095 fingerprint = CB D9 F4 12 68 07 E4 05  CC 2D 27 12 1D F5 E8 6E

Reply to: