| 1 |
On Wed, 2003-07-30 at 10:40, Patrick Kursawe wrote: |
| 2 |
> Perhaps I misunderstand you, but are you actually encouraging people |
| 3 |
> to sign keys they did not personally verify? |
| 4 |
|
| 5 |
Yes. However, there will be others at the booth that they can |
| 6 |
personally verify as well when they come to veryify their own identity, |
| 7 |
and if the people at the booth verify everyone else, then it's all the |
| 8 |
same, which is why it's called a "web" of trust. If you come to verify |
| 9 |
and trust the people in the booth, who verify everyone else, then it |
| 10 |
should be the same. If you don't trust the people in the booth who are |
| 11 |
verifying everone else, then should you be allowing them to sign your |
| 12 |
key in the first place? |
| 13 |
|
| 14 |
> What's the idea behind this, if weakening the web of trust isn't? :-) |
| 15 |
|
| 16 |
Not really. |
| 17 |
|
| 18 |
> Just wondering, |
| 19 |
|
| 20 |
That's okay. I figured some people would have a beef with it, which is |
| 21 |
why I stressed that it's a voluntary thing. If you're not comfortable |
| 22 |
with this method, then you don't have to participate. |
| 23 |
|
| 24 |
Cheers! |
| 25 |
|
| 26 |
-- |
| 27 |
Corey Shields - Gentoo Linux Infrastructure Team |
| 28 |
http://www.gentoo.org/~cshields |
Archives