On Tue, Jun 14, 2005 at 02:58:32PM +0200, Jan Niehusmann wrote:
> On Wed, Jun 08, 2005 at 02:09:59AM +0200, Per Tunedal Casual wrote:
> > True, but it might be convenient anyhow. The shorter the time, the safer
> > the guess!
> >
> > One way is to assume that the key is attacked immediately and th
On Wed, Jun 08, 2005 at 02:09:59AM +0200, Per Tunedal Casual wrote:
> True, but it might be convenient anyhow. The shorter the time, the safer
> the guess!
>
> One way is to assume that the key is attacked immediately and that all the
> security is in the passphrase. Make an estimation of the stre
On Wed, 08 Jun 2005 02:09:59 +0200, Per Tunedal Casual said:
> Issuers of X509 certificates use 1 year for soft certificates and 5 years
> for card certificates. I don't know their calculations behind that decision.
That is a different thing: It is the expiration time of the key;
something one sh
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
At 15:40 2005-06-07, you wrote:
>On Mon, 6 Jun 2005 12:20:33 -0400, Anonymous said:
>
>> #2. A statement that you trust that the UID accurately reflects the
>> true ownership of the key.
>
>I just wonder how to decide how long this ownership is valid
On Mon, 6 Jun 2005 12:20:33 -0400, Anonymous said:
> #2. A statement that you trust that the UID accurately reflects the
> true ownership of the key.
I just wonder how to decide how long this ownership is valid. A year,
a month, a day, a minute or even already void in the past? The owner
usual
">
Your are mixing up two things: The statement that you checked the
owneership of the key at a certain date and how far you trust the
owner of the key to implement decent keymanagment abilities.
I know that the OpenPGP group has taken great pains to not define trust. It
leaves trust to be defi
On Sun, 5 Jun 2005 21:46:12 -0400, Anonymous said:
> Well if I know that the person is lazy, and keeps the key on an
> unsecure computer and it is likely that within one year the key will
> be compromized, I would sign with a one year expiration date. Basicly
Your are mixing up two things: The s
On Sun, 5 Jun 2005 10:21:51 +0300 (EEST), Oskar L said:
> May I ask why you, or anyone, would want to do this? If I get a public key
> with a signature from someone who's key I have verified and who I trust to
> check keys properly, then why should it matter to me if that signature has
The signat
May I ask why you, or anyone, would want to do this? If I get a public key
with a signature from someone who's key I have verified and who I trust to
check keys properly, then why should it matter to me if that signature has
expired or not? It still means the same thing; that the person who signed
"Per Tunedal Casual" <[EMAIL PROTECTED]> wrote:
> Hi,
> I want to sign keys with signatures having a limited life time. Can I set
> an expiration date when I sign a key?
>
> I often get a question if I want my signature to expire when the key
> expires, so far so good. I want to set a date of my o
On Sat, Jun 04, 2005 at 04:28:56AM +0200, Per Tunedal Casual wrote:
> Hi,
> I want to sign keys with signatures having a limited life time. Can I set
> an expiration date when I sign a key?
>
> I often get a question if I want my signature to expire when the key
> expires, so far so good. I want t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
I want to sign keys with signatures having a limited life time. Can I set
an expiration date when I sign a key?
I often get a question if I want my signature to expire when the key
expires, so far so good. I want to set a date of my own will.
Pe
12 matches
Mail list logo
