Hello Andrew, On Sat, Oct 04, 2014 at 03:39:32PM -0400, Andrew wrote: > Dear Klaus, > > Why did you changes signing keys from BA8F038D to 57E37087? ...or *did* you? BA8F038D was created primarily for my old LinuxTag email addresses, which I don't use anymore. Since the time I left LinuxTag in 2005, I use the 57E37087 key, for signing E-Mail as well as Knoppix ISO checksums (hence the knoppix@knopper.net mail address). pub 1024R/BA8F038D 2000-05-09 Key fingerprint = 2B 01 12 1B 55 5B 31 58 47 F4 C3 4B 7B DC 2E 6B uid Dipl.-Ing. Klaus Knopper (My business address) <knopper@knopper.net> uid Klaus Knopper <knopper@linuxtag.org> uid Klaus Knopper <knopper@linuxtag.de> pub 1024D/57E37087 2000-05-06 Key fingerprint = 0E57 3DA0 F139 69EF 1DD5 ACAA 3798 E3D7 57E3 7087 uid Klaus Knopper <info@knopper.net> uid Klaus Knopper <knopper@knopper.net> uid Klaus Knopper <knoppix@knopper.net> > Why isn't the current signing key, 57E37087, signed by the old one, BA8F038D? Why do you trust BA8F038D? ;-) The key is not compromised, so I never issued a revocation, but I just don't use it anymore. > How can I confirm the 57E37087 signature really belongs to you? Meet me somewhere in person and ask, everything else would be relying on a third party. But if you are convinced of BA8F038D belonging to me and not being compromised, it may help when I sign this mail with my old key for once. :-) Regards -Klaus
Attachment:
signature.asc
Description: Digital signature