On Thu, Jan 11, 2001 at 10:49:06PM +0000, Martin Michlmayr wrote:
> * Craig Small <csmall@eye-net.com.au> [20010112 09:06]:
> > > So I accept that the Photo ID which is signed by his gpg key.
> > Aren't you supposed to be independently get the photo ID verified by a
> > third party like a uni lecturer etc?
> Only if the photo is a normal photo instead of an ID such as a
> drivers license or passport.
> http://www.debian.org/devel/join/nm-step2
> If the applicant does NOT have any photo-ID such as a drivers
> license or Passport, then any photo of him would do. But in such a
> case, the trusted verification path (such as an employer, or faculty
> member) may be provided, and the final report may explain that.
Shouldn't that be done anyway? (It's not that hard to, say, steal
someone's wallet and scan their photo id, then sign it with a new GPG
key you just created...)
Cheers,
aj
--
Anthony Towns <aj@humbug.org.au> <http://azure.humbug.org.au/~aj/>
I don't speak for anyone save myself. GPG signed mail preferred.
``Thanks to all avid pokers out there''
-- linux.conf.au, 17-20 January 2001
Attachment:
pgpLA0i6fjKzH.pgp
Description: PGP signature