Re: GPG and Signing

To: debian-user@lists.debian.org
Subject: Re: GPG and Signing
From: Ron Johnson <ron.l.johnson@cox.net>
Date: Sun, 01 Apr 2007 10:54:27 -0500
Message-id: <[🔎] 460FD5B3.6030804@cox.net>
In-reply-to: <[🔎] 20070401162934.6baa904c@abydos.stargate.org.uk>
References: <[🔎] 20070401023012.GA8019@localhost> <[🔎] 460F33BA.3090506@cox.net> <[🔎] 20070401112654.5f89ad09@think.homenet> <[🔎] 20070401121106.GD3516@localhost> <[🔎] 20070401122439.GA3786@localhost> <[🔎] 20070401123711.GA4646@localhost> <[🔎] 20070401134247.09de9e9e@abydos.stargate.org.uk> <[🔎] 20070401133519.GA6182@localhost> <[🔎] 20070401145951.464a5cd8@abydos.stargate.org.uk> <[🔎] 87fy7kf84c.fsf@toncho.dhh.gt.org> <[🔎] 20070401162934.6baa904c@abydos.stargate.org.uk>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 04/01/07 10:29, Brad Rogers wrote:
> On Sun, 01 Apr 2007 10:05:07 -0500
> John Hasler <jhasler@debian.org> wrote:
> 
> Hello John,
> 
>> "ID" is a slippery concept.  What does it mean to "know who someone
>> is"?
> 
> Indeed.  However, with some sort of photo ID, such as passport of
> driving license, and knowledge of the relevant key fingerprint, it's
> possible to be fairly sure you're dealing with the person that created
> the public key.  So long as the details all match, whether that's their
> "real" ID is moot.

A couple of years ago there was a very long thread on what it means
to "trust".  The bottom line was that you can't perfectly know, and
that all you can do is "your best" at verifying his identity, and
then have faith.

- --
Ron Johnson, Jr.
Jefferson LA  USA

Give a man a fish, and he eats for a day.
Hit him with a fish, and he goes away for good!

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD4DBQFGD9WyS9HxQb37XmcRAp7JAJjy0yTrHIzyH2opQ9Ek9bShXpb/AJ9ZMQMW
3/uqnguJv2XcL/SeCVQ8Og==
=a+Fb
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: GPG and Signing
  - From: Brad Rogers <brad@fineby.me.uk>
- Re: GPG and Signing
  - From: John Hasler <jhasler@debian.org>
- Re: GPG and Signing
  - From: Michael Pobega <pobega@gmail.com>

References:
- GPG and Signing
  - From: Michael Pobega <pobega@gmail.com>
- Re: GPG and Signing
  - From: Ron Johnson <ron.l.johnson@cox.net>
- Re: GPG and Signing
  - From: Andrei Popescu <andreimpopescu@gmail.com>
- Re: GPG and Signing
  - From: Michael Pobega <pobega@gmail.com>
- Re: GPG and Signing
  - From: Florian Kulzer <florian.kulzer@icfo.es>
- Re: GPG and Signing
  - From: Michael Pobega <pobega@gmail.com>
- Re: GPG and Signing
  - From: Brad Rogers <brad@fineby.me.uk>
- Re: GPG and Signing
  - From: Michael Pobega <pobega@gmail.com>
- Re: GPG and Signing
  - From: Brad Rogers <brad@fineby.me.uk>
- Re: GPG and Signing
  - From: John Hasler <jhasler@debian.org>
- Re: GPG and Signing
  - From: Brad Rogers <brad@fineby.me.uk>

Prev by Date: Re: Pronunciation of common Linux-related words - gradually going OT :)
Next by Date: Re: Woohooo! Dell + Linux
Previous by thread: Re: GPG and Signing
Next by thread: Re: GPG and Signing
Index(es):
- Date
- Thread