-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Being somewhat new to this stuff, how do I check that the gpg signature on an email matches that of the public key fingerprint registered with debian when you become a developer? I.E., assuming Eray *does* finally make it through the new-dev process, and he continues to gpg-sign his mails like a good dev, how do I make sure it's really him? All kmail says is "signed by unknown key blah". Now, I could goto the website and manually check in the debian developer's database (db.debian.org) but that's painfull, and someone has surely come up with a better way. I'm on enough mailing lists with enough different people posting, that I can't possible check each individual's key by hand. So, please reply with comments, off list if you feel bad about the subject(though traffic's been so low lately.....), and help me out. 'Cuz it's *got* to be easier than I'm making it out to be.....
Thanks, D.A.Bishop -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE7XPgpKEJ4huP2XBERAuwLAKC2Zxkg9EcMMqaVpI+pCyEhloimDwCgoq3y bhj5FzIVZQMuAcZ59hmWyQE= =HWNl -----END PGP SIGNATURE-----
