Re: PGP signatures.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora <fedora-list@xxxxxxxxxx>
Subject: Re: PGP signatures.
From: Björn Persson <listor3.rombobeorn@xxxxxxxxxx>
Date: Fri, 30 May 2008 00:02:42 +0200
In-reply-to: <1212036315.3294.1.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <483C2C13.9050802@xxxxxxxxxxxxxxxx> <544eb990805280829q1925c0f6ia3de3a20b8eecc97@xxxxxxxxxxxxxx> <1212036315.3294.1.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: For users of Fedora <fedora-list@xxxxxxxxxx>
User-agent: KMail/1.9.9

Tim wrote:
> On Wed, 2008-05-28 at 16:29 +0100, Bill Crawford wrote:
> > What do you do if you encounter a key that's signed by both someone
> > you trust personally, *and* someone you don't trust?
>
> I suppose that would depend on whether that was:  You didn't know
> whether to trust them, or you distrusted them.

No.

If A's key is signed with B's key, and B's key is known to be valid, and you 
trust that B signs keys responsibly, then A's key is valid, period. Other 
signatures are completely irrelevant. Nobody can make a key invalid by 
signing it, no matter how evil or irresponsible or untrustworthy they are.

Björn Persson

-- 
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list

References:
- PGP signatures.
  - From: Mikkel L. Ellertson
- Re: PGP signatures.
  - From: Bill Crawford
- Re: PGP signatures.
  - From: Tim

Prev by Date: Re: Fedora 9 + Network Manager = Wireless NOT Connecting
Next by Date: Re: USB Install Method?
Previous by thread: Re: PGP signatures.
Next by thread: Re: PGP signatures.
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]

Powered by Linux