Re: Signing Packages.gz

To: debian-devel@lists.debian.org
Subject: Re: Signing Packages.gz
From: Zed Pobre <zed@resonant.org>
Date: Sat, 1 Apr 2000 22:36:44 -0600
Message-id: <20000401223644.B6629@resonant.org>
Mail-followup-to: Zed Pobre <zed@resonant.org>, debian-devel@lists.debian.org
Reply-to: Zed Pobre <zed@debian.org>
In-reply-to: <20000402133656.B15145@azure.humbug.org.au>; from aj@azure.humbug.org.au on Sun, Apr 02, 2000 at 01:36:56PM +1000
References: <20000401121501.A25544@azure.humbug.org.au> <Pine.LNX.3.96.1000331193923.27820B-100000@wakko.deltatee.com> <20000401153828.D309@ulysses.dhis.net> <20000402133656.B15145@azure.humbug.org.au>

On Sun, Apr 02, 2000 at 01:36:56PM +1000, Anthony Towns wrote:
> 
> Also, what's so fundamentally wrong with transferring a secret key over
> the net? Hint: PGP does it every time you send an encrypted email.

    Either you are using the phrase "secret key" in a context with
which I am unfamiliar, or you do not understand PGP.  PGP/GPG does not
transfer your secret key component when encrypting a message to
another.  It is possible to encrypt a message to someone else's public
key without *having* a secret key of your own in the first place.

-- 
Zed Pobre <zed@debian.org> a.k.a. Zed Pobre <zed@resonant.org>
PGP key and fingerprint available on finger; encrypted mail welcomed.

Attachment: pgpjxvC4qHf5u.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: Signing Packages.gz
  - From: Anthony Towns <aj@azure.humbug.org.au>

References:
- Re: Signing Packages.gz
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: Signing Packages.gz
  - From: Anthony Towns <aj@azure.humbug.org.au>

Prev by Date: Re: Signing Packages.gz
Next by Date: Re: Signing Packages.gz
Previous by thread: Re: Signing Packages.gz
Next by thread: Re: Signing Packages.gz
Index(es):
- Date
- Thread