www-community mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Lars Eilebrecht <l...@hyperreal.org>
Subject Re: How to get pgp keys signed
Date Fri, 17 Oct 2003 00:00:01 GMT
According to Sander Temme:

> Why would we have to be confident of their identity? Immediately above, 
> you just say that "you believe that key is associated with the correct
> person". So we vouch for the connection between that particular
> carbon-based lifeform and said key. Why would we care who the state or
> country that they come from says they are?

Well, a pgp key user ID usually includes a first and last name
(and of course the email address) a signatures indicates that the
signee has verified that the key is associated with the person
given in the user ID field. Asking for an official picture ID
is usually a good method to verify the person's name.

Personally, I never sign keys that contain no name or only
some funny nickname (I only made a single exception in the past).

ciao...
-- 
Lars Eilebrecht             - I may not agree with what you say, but
lars@hyperreal.org     - I will defend to death your right to encrypt it!

---------------------------------------------------------------------
To unsubscribe, e-mail: community-unsubscribe@apache.org
For additional commands, e-mail: community-help@apache.org


Mime
View raw message