Re: gpg key validity question
christophe barbé <christophe.barbe@ufies.org> writes:
> I forgot to mention that we exchanged encrypted secret words and that I
> check the fingerprint when I meet him.
>
> He use his email address in his gpg key but his email address is not
> related to his name.
>
> I am sure he is the guy behind the key.
> I started this thread because of the debian implication.
>
> I believe that from the pure 'web of trust' point of view I can sign his
> key.
>
> Now from the debian point of view, I don't know. I understand that
> the NM process need an ID. So even if I sign his key or not, It
> should not be possible for him to go further without providing a gpg
> key containing his name and signed by a dd. So this told me that I
> can sign his key.
He may use a name related to his email address to enter NM
(at least if you have sign his gpg key).
--
Rémi Vanicat
vanicat@labri.u-bordeaux.fr
http://dept-info.labri.u-bordeaux.fr/~vanicat
--
To UNSUBSCRIBE, email to debian-mentors-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: