Alphax wrote:
The time is ripe for a GPG variant: ("GPG-lean" ?): a public key
encryption utility with no built-in e-mail ties and no attempt
whatsoever to incorporate the solution for the authentication
problem. (For the majority of us, fingerprint-exchange-by-voice
>>is perfectly adequate).
David Shaw wrote:
>It wasn't an idle suggestion. You can assume that I do, in fact, know
>that this is possible, or I wouldn't have suggested it. Why on earth
>an email address is relevant here I have no idea. You don't need
>anything more than the IP address.
That depends. If that IP address
cdr wrote:
> MUS1876 wrote:
>> Alphax wrote:
>>> I have friends who currently don't want to use PGP because they
>>> fear that their keys will be uploaded to a keyserver, and then
>>> they will be spammed forever more.
>>
>>
>> I totally agree what friends of Alphax say.
>>
>> Wouldn't it be cute t
David Shaw wrote:
> On Sun, Sep 11, 2005 at 09:27:54PM +0200, Johan Wevers wrote:
>
>>David Shaw wrote:
>>
>>
>>>I have sympathy for that argument, so wouldn't it be good to trace
>>>down where the sigs are entering the keyserver net, and ask whoever is
>>>doing it to stop? It seems like the obvi
On Fri, Sep 09, 2005 at 03:00:31PM +0200, Johan Wevers wrote:
> David Shaw wrote:
>
> >Known by *you*. I rather think the GD is a good signer, for what it
> >is.
>
> I think both of you need to make a difference between a bad signer that
> signs keys without doing sufficient checking, and a sign
On Sun, Sep 11, 2005 at 09:27:54PM +0200, Johan Wevers wrote:
> David Shaw wrote:
>
> >I have sympathy for that argument, so wouldn't it be good to trace
> >down where the sigs are entering the keyserver net, and ask whoever is
> >doing it to stop? It seems like the obvious first step.
>
> Assum
David Shaw wrote:
>I have sympathy for that argument, so wouldn't it be good to trace
>down where the sigs are entering the keyserver net, and ask whoever is
>doing it to stop? It seems like the obvious first step.
Assuming this is possible at all. I don't know exctly what keyservers log,
but I'
MUS1876 wrote:
I have
friends who currently don't want to use PGP because they fear that
>>their
keys will be uploaded to a keyserver, and then they will be spammed
forever more.
I totally agree what friends of Alphax say.
Wouldn't it be cute to have a sepcial option to flag both keys and
s
David Shaw wrote:
>Known by *you*. I rather think the GD is a good signer, for what it
>is.
I think both of you need to make a difference between a bad signer that
signs keys without doing sufficient checking, and a signer that spams
signatures in quantities that could become a DOS attack. The G
> I have
> friends who currently don't want to use PGP because they fear that their
> keys will be uploaded to a keyserver, and then they will be spammed
> forever more.
Hi,
I totally agree what friends of Alphax say.
Wouldn't it be cute to have a sepcial option to flag both keys and
subkeys as
On Sat, Sep 10, 2005 at 05:34:53PM +0200, MUS1876 wrote:
> > I have
> > friends who currently don't want to use PGP because they fear that their
> > keys will be uploaded to a keyserver, and then they will be spammed
> > forever more.
>
> Hi,
>
> I totally agree what friends of Alphax say.
>
> W
> I have
> friends who currently don't want to use PGP because they fear that their
> keys will be uploaded to a keyserver, and then they will be spammed
> forever more.
Hi,
I totally agree what friends of Alphax say.
Wouldn't it be cute to have a sepcial option to flag both keys and
subkeys as
On Sat, Sep 10, 2005 at 12:28:22AM +0930, Alphax wrote:
> David Shaw wrote:
> > On Fri, Sep 09, 2005 at 11:02:56AM +0200, Johan Wevers wrote:
> >
> >>David Shaw wrote:
> >>
> >>
> >>>I'd be all in favor of an option where users could elect to filter out
> >>>keys: that would put the user in contro
David Shaw wrote:
> On Fri, Sep 09, 2005 at 11:02:56AM +0200, Johan Wevers wrote:
>
>>David Shaw wrote:
>>
>>
>>>I'd be all in favor of an option where users could elect to filter out
>>>keys: that would put the user in control. Forcing your decision on
>>>others by stripping signatures is a very
Johan Wevers wrote:
> Alphax wrote:
>>Removing duplicated signatures however would probably have little impact,
>>assuming you are removing only the newest ones
>
> Don't you mean keeping the newst ones?
>
Er, yes. However as David Shaw pointed out further down the thread,
there's no safe way to
On Fri, Sep 09, 2005 at 09:30:35AM -0400, Jason Harris wrote:
> On Fri, Sep 09, 2005 at 08:31:35AM -0400, David Shaw wrote:
> > On Fri, Sep 09, 2005 at 12:22:00AM -0400, Jason Harris wrote:
>
> [I'll address your other points later.]
>
> > If you insist on presenting a different view to users th
On Fri, Sep 09, 2005 at 08:31:35AM -0400, David Shaw wrote:
> On Fri, Sep 09, 2005 at 12:22:00AM -0400, Jason Harris wrote:
[I'll address your other points later.]
> If you insist on presenting a different view to users than the entire
> rest of the keyserver net, without any way to turn such a
On Fri, Sep 09, 2005 at 01:11:30PM +0200, Johan Wevers wrote:
> Alphax wrote:
>
> >Carrying out a full cleaning of keys stored on keyservers would
> >seriously damage the WoT.
>
> Too bad. However, if you just strip the GD signature off the damage won't
> be too large.
Then it needs to be done a
On Fri, Sep 09, 2005 at 07:38:31PM +0930, Alphax wrote:
> Johan Wevers wrote:
> > David Shaw wrote:
> >
> >
> >>I'd be all in favor of an option where users could elect to filter out
> >>keys: that would put the user in control. Forcing your decision on
> >>others by stripping signatures is a ve
On Fri, Sep 09, 2005 at 11:02:56AM +0200, Johan Wevers wrote:
> David Shaw wrote:
>
> >I'd be all in favor of an option where users could elect to filter out
> >keys: that would put the user in control. Forcing your decision on
> >others by stripping signatures is a very disturbing step.
>
> Con
On Fri, Sep 09, 2005 at 12:22:00AM -0400, Jason Harris wrote:
> > If I ran a keyserver, would it be appropriate for me to drop all
> > signatures from your key D39DA0E3 simply because they're available
> > somewhere else?
>
> keyserver.pgp.com doesn't synchronize with other keyservers, by design,
Alphax wrote:
>Carrying out a full cleaning of keys stored on keyservers would
>seriously damage the WoT.
Too bad. However, if you just strip the GD signature off the damage won't
be too large.
>Removing duplicated signatures however would probably have little impact,
>assuming you are removing
Johan Wevers wrote:
> David Shaw wrote:
>
>
>>I'd be all in favor of an option where users could elect to filter out
>>keys: that would put the user in control. Forcing your decision on
>>others by stripping signatures is a very disturbing step.
>
>
> Considering the behaviour of the GD, I'd s
David Shaw wrote:
>I'd be all in favor of an option where users could elect to filter out
>keys: that would put the user in control. Forcing your decision on
>others by stripping signatures is a very disturbing step.
Considering the behaviour of the GD, I'd say it's also a practical issue
about
On Thu, Sep 08, 2005 at 11:23:08PM -0400, David Shaw wrote:
> On Thu, Sep 08, 2005 at 11:10:23PM -0400, Jason Harris wrote:
> > Not at all. Anyone who wants sigs from the GD should use that
> > keyserver. They're still available from it, and, remember,
> > expired sigs don't affect the WoT, so w
On Thu, Sep 08, 2005 at 11:10:23PM -0400, Jason Harris wrote:
> On Thu, Sep 08, 2005 at 10:28:29PM -0400, David Shaw wrote:
> > On Thu, Sep 08, 2005 at 10:08:24PM -0400, Jason Harris wrote:
>
> > > keyserver.kjsl.com is now stripping all GD sigs. The extra variable
> > > in kd_search.c and code f
On Thu, Sep 08, 2005 at 10:28:29PM -0400, David Shaw wrote:
> On Thu, Sep 08, 2005 at 10:08:24PM -0400, Jason Harris wrote:
> > keyserver.kjsl.com is now stripping all GD sigs. The extra variable
> > in kd_search.c and code for 'case 2:' of make_keys_elem(), respectively:
>
> It's your keyserver
On Thu, Sep 08, 2005 at 10:08:24PM -0400, Jason Harris wrote:
> On Thu, Sep 08, 2005 at 08:00:25PM -0400, David Shaw wrote:
> > On Fri, Sep 09, 2005 at 12:33:47AM +0200, Dirk Traulsen wrote:
>
> > > 3. Because now I was irritated, I did the same again with a different
> > > keyserver 'keyserver.k
28 matches
Mail list logo
