Manoj Srivastava escribió: > As madduck demonstrated y breaking the last keysigning, most > signatures at such large keysigning parties are mostly worthless, since > effective identity checks are highly improbable.
The problem is not with they keysigning parties themselves, nor the attendees. The point relies mostly on you to make correct ID checking and correct key signing. You won't stop others to sign your key but you definitively can add some quality assurance and do your job on a proper way and sign people's keys that you have certified appropriately. madduck did not broke the keysigning party, but broke people that trusted his ID and signed his key, IMNVHO. -- David Moreno Garza <[EMAIL PROTECTED]> | http://www.damog.net/ Use GPG. _______________________________________________ Debconf-discuss mailing list [email protected] http://lists.debconf.org/mailman/listinfo/debconf-discuss
