1 |
Hello |
2 |
|
3 |
On Mon, May 26, 2008 at 04:27:49PM +0100, Matt Harrison wrote: |
4 |
> You can never fully trust even a signed message unless you have physically |
5 |
> met the person in question and they have given you their key signature on |
6 |
> some secure media such as a floppy disk. Downloaded keys from keyservers |
7 |
> are not a guarantee that the key was made my the person in question. Unless |
8 |
> I know the person well and they have provided means of verifying the key, I |
9 |
> would only ever award marginal trust. |
10 |
|
11 |
You can not be sure it is the person it claims to be. But you can be |
12 |
quite sure it is the person it was yesterday and the week before. You do |
13 |
not know, if you can trust the person his name, but you can know the |
14 |
person does not play silly jokes with rm -rf. |
15 |
|
16 |
-- |
17 |
_(){ _&_;};_ |
18 |
|
19 |
Michal 'vorner' Vaner |