Re: Migrating to GPG - A mini-HOWTO
On Wed, Sep 15, 1999 at 01:19:34PM +0200, Paul Slootman wrote:
> > With dinstall a compromise is short lived and can be undone by erasing the
> > effected package. Creating a new key and getting people to sign it cannot
> > really be undone.
> How do you prove to whoever is able to erase the package that you
> are who you say you are? I.e. how do you convince them that they
> should in fact erase the package?
With your old compromised key.
Not that I have anything much against redundancy. But I said that already.
-- Larry Wall in <199702271735.JAA04048@wall.org>