Mattias Andrée wrote: > If the server's authenticity can be proven with HTTPS, > what additional secure does PGP-signatures provide?
Some people trust persons they know more than they trust random corporations with questionable security policies. Other people think PGP sucks. I don't know which group has the majority in the suckless community, thus I asked for a gentle vote by flamewar. I count myself to the PGP proponents, but have to admit, that I might be too lazy to check the PGP signatures myself. --Markus
