Re: [OT] Bogus undelivered message
Pigeon writes:
> It would be possible for $CYBERSPY to crack the keyserver and replace
> $CYBERPAL's key with his own, then intercept all mails from $CYBERPAL,
> replace the signature and send them on.
Which will do $CYBERSPY no good at all since his key will not carry any of
the signatures that $CYBERPAL's does. The web of trust is not dependent on
the security of the keyservers (indeed, the keyservers are not necessary at
all: just convenient).
--
John Hasler
john@dhh.gt.org (John Hasler)
Dancing Horse Hill
Elmwood, WI
Reply to: