On 2012-01-21 14:58, MFPA wrote: > More importantly, they are signing UIDs that may well contain email > addresses, without actually verifying that you "control" those email > addresses.
Rather, that you "can read an email which they sent that was addressed to that" email address. But I do agree it should be the key owner's decision where that signature is uploaded. -- PGP: A0E4 B2D4 94E6 20EE 85BA E45B 63E4 2BD8 C58C 753A PGP: 2C23 EBFF DF1A 840D 2351 F5F5 F25B A03F 2152 36DA -- nameserver 217.79.186.148 nameserver 178.63.26.172 http://opennicproject.org/ -- No situation is so dire that panic cannot make it worse.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list [email protected] http://lists.gnupg.org/mailman/listinfo/gnupg-users
