On 2000-01-28 13:34:52 +0000, Edmund GRIMLEY EVANS wrote:
> Has anyone checked the GnuPG mailing lists (which are archived at
> www.gnupg.org) whether anyone over there is aware of the problem
> or planning to do anything about it?
The problem _is_ well-known to the gnupg developers. However,
fixing this would probably require a rewrite of one of the more
complex parts of the program, namely, the web of trust calculations.
If you want to see how this can be done the right way (1) and more
efficiently, look at the keymaint.c module from the PGP 2 source.
(1) Not really. PGP generally uses a rather simple trust model.
Maurer has suggested a better one which, however, requires
calculations of a complexity which is exponential in the number of
keys. Nevertheless, for lots of practical purposes, the PGP model
is just fine.
--
http://www.guug.de/~roessler/
