[Top] [All Lists]

Re: PGP security models, was Summary of IETF LC for draft-ietf-dane-openpgpkey

2015-09-23 01:06:48
On 09/23/2015 07:34 AM, Harald Alvestrand wrote:

I keep a keystore on all my mailers, but haven't bothered to build any
trust networks recently. This will allow me to detect certain kinds of
attacks (damaged messages, multiple keys claiming to be for the same
person) without causing me to spend time managing my keystore.

For me, that's a reasonable tradeoff.

And the mailing list server + my PGP defaults conspired to illustrate my
point by rendering my signature unverifiable.


Attachment: signature.asc
Description: OpenPGP digital signature