Re: mailing list pgp signatures...

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Fri, Jul 10, 2009 at 17:47:52 -0500,
  "Mikkel L. Ellertson" <mikkel@xxxxxxxxxxxxxxxx> wrote:
> How does it maintain your identity when we can not verify that you
> signed the message. Without having your public key, all we know is
> that someone signed the message. So, your signing your messages sent
> to the mailing list does nothing except cause problems for others.

Because the messages are signed with the same key. So whoever is creating
the signed messages has access to the private key. Key servers don't add a lot
of assurance on top of this. And they add a risk that it tells other parties
who you are communicating with.

-- 
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines

[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux