[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: encryption of emails

On Apr 10, 2005 7:45 AM, Shri Shrikumar <shri@kraya.co.uk> wrote:
> Technically, could you not setup your mail server using an additional
> perl / bash script to gpg encrypt all email which are going to someone
> with a key on the subkeys.pgp.net or whatever it is.
> Then the only requirement is that people who want encrypted mail create
> and add their key to the key servers.

There's a danger in that, though. Anybody can upload their public key
to a public keyserver, so you'd have to find some way of verifying
that a certain key is actually owned by your intended recipient.

The best options are:
a) maintain a whitelist of known key signatures
b) implement a widescale web-of-trust

--Stephen Le

Reply to: