incubator-general mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Branko ─îibej <br...@apache.org>
Subject Re: key signing
Date Thu, 11 Oct 2012 07:00:46 GMT
On 10.10.2012 00:01, Marvin Humphrey wrote:
> While this protocol does not rely heavily on validating
> government-issued IDs, the Debian guidelines quoted above point out
> that some people object to giving such IDs too much creedence:

So instead of giving too much credence to government-issued IDs, you'd
prefer to give credence to a service provided "for free" by a commercial
entity with a conceivable interest in inserting backdoors in software or
subverting trust in certain keys (a.k.a. Google), with the whole thing
being archived in as system controlled by another commercial entity
(a.k.a. YouTube, incidentally a.k.a. Google), with no public oversight
of those archives.

I'm sure you'd sue Google and win if they fake the archive.

-- Brane


---------------------------------------------------------------------
To unsubscribe, e-mail: general-unsubscribe@incubator.apache.org
For additional commands, e-mail: general-help@incubator.apache.org


Mime
View raw message