On Wed, Sep 15, 1999 at 01:19:34PM +0200, Paul Slootman wrote:
[...]
> > With dinstall a compromise is short lived and can be undone by erasing the
> > effected package. Creating a new key and getting people to sign it cannot
> > really be undone.
>
> How do you prove to whoever is able to erase the package that you
> are who you say you are? I.e. how do you convince them that they
> should in fact erase the package?
With your old compromised key.
Martin
--
Not that I have anything much against redundancy. But I said that already.
-- Larry Wall in <[EMAIL PROTECTED]>
