key signing
Adrian 'Dagurashibanipal' von Bidder
avbidder@fortytwo.ch
Fri Jan 3 12:48:01 2003
--=-PsS4xtwhivnVkSb8Pejg
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
On Thu, 2003-01-02 at 15:18, Tuyen DINH wrote:
> Hello,
>=20
> When you want to sign a key you have just imported, in which cases will
> you choose one the following choices :
> =20
> (0) I will not answer. (default) ?
My personal feeling is that this is mostly obsolete - all signatures
*should* fit into the 1-3 schema. But then, there may be special
applications where these do not fit and perhaps a 0 with a policy URL
(or notation) explaining the special circumstances makes more sense
> (1) I have not checked at all. ?
- as David said: when you don't care who is behind this key, but you
want to make a statement about 'the person behind that key (whoever this
is)'
- (can be seen as application of the above): recently, a robotCA was
created: it signs keys and verifies email addresses only (of course,
being fully automatic, it can't do more).
cheers
-- vbi
--=20
get my gpg key here: http://fortytwo.ch/gpg/92082481
--=-PsS4xtwhivnVkSb8Pejg
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iHMEABECADMFAj4VeLcsGmh0dHA6Ly9mb3J0eXR3by5jaC9sZWdhbC9ncGcvZW1h
aWwuMjAwMjA4MjIACgkQi6Qxi+Wn99b5/ACg7/yrfo0kJ+vKTV4S4owVS3RiiDoA
nAnA40zFElYkBfqT3/VVII6tgPdO
=WWAI
-----END PGP SIGNATURE-----
Signature policy: http://fortytwo.ch/legal/gpg/email.20020822
--=-PsS4xtwhivnVkSb8Pejg--