mailto with pgp fingerprint
MFPA
2014-667rhzu3dc-lists-groups at riseup.net
Fri Jul 25 16:36:24 CEST 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Hi
On Friday 25 July 2014 at 3:12:58 PM, in
<mid:20140725101258.a18ae6eadac2f5426df7c59c at gmail.com>, Thomas
Harning wrote:
> While PGP Global Directory provides for some basic
> level of "this email address belongs to this key"...
> its key signing policy leads to "cruft" buildup.
Yes, I wasn't promoting it. Just replying to Steve's post about
keyservers verifying UIDs by sending emails being a "nice solution"
and had it been discussed - by showing him that it had actually been
tried and there is an instance publicly available. I was hoping that
Steve would then search for discussions on "PGP Global Directory" to
see arguments for and against, or maybe that somebody would briefly
summarise here.
> Back in April 2011 I signed up for it and got a series
> of key signatures every few weeks until January 2012
> when I got fed up with it. There are now 14 expired
> signatures 'stuck' on my key and published to the
> directories...
And I guess these have been leaked onto the networked keyservers,
rather than being confined to PGP Global Directory? I never really saw
the point of those signatures from the directory: if it was listed
there, it had been verified in the last six months, and once a user
had downloaded and used it for communication, they knew whether or not
it worked.
- --
Best regards
MFPA mailto:2014-667rhzu3dc-lists-groups at riseup.net
Courage is not the absence of fear, but the mastery of it.
-----BEGIN PGP SIGNATURE-----
iPQEAQEKAF4FAlPSa3RXFIAAAAAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0
N0VDQTAzAAoJEKipC46tDG5p8LoD/RN/S+yms9N/Igu0XJbpCxai6MVbYuZ8FW8R
evzqYbR7E08R3ThgSfXOakwBEJkuCII60XYzF27g3ztK+qdcHtDZvQUwe4OwgdkU
YxEcES9x8glee3WudRCl1NXpOBDyKkBfb/ESaIvjK0RdVEYpStMGx3b6X1/gzEM+
d8jDOc74
=TeLf
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list