Am Mo 28.04.2014, 16:49:30 schrieb John Wofford: > I apologize if this has been discussed before,
Yeah, I was the last one. > sense to run email addresses through a one-way hash before uploading > them to a keyserver? Short answer: It would not work with typical email addresses because their "key space" is too small, enumeration and hash checking would be possible. The real weapon against spammers would be a "transport web of trust" i.e. a "transport signature" by a key which is considered valid for delivering email. But that is ten years from now. Hauke -- Crypto für alle: http://www.openpgp-schulungen.de/fuer/unterstuetzer/ http://userbase.kde.org/Concepts/OpenPGP_Help_Spread OpenPGP: 7D82 FB9F D25A 2CE4 5241 6C37 BF4B 8EEF 1A57 1DF5
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Gnupg-users mailing list [email protected] http://lists.gnupg.org/mailman/listinfo/gnupg-users
