On Mon, Dec 01, 2008 at 09:04:37AM CET, Dave Warren <[EMAIL PROTECTED]> said: > > The only way a key can be completely trusted is if it's provided > completely independently of the download infrastructure, hosted > elsewhere entirely, requiring a compromise of two unique and unrelated > systems.
Or the key should be signed by enough people to give a trust path to the user. -- Erwan _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
