1. I create a public key and private key. I can sign any message using my private key and anyone with my public key can verify that the message comes from me.
if you upload your key to a keyserver - yup
2. It won't work if someone masquerading as me spread a fake key. So you have fingerprints, so I can generate my fingerprint and you can call me and verify that it is indeed my public key.
yeah.
3. If I trust A completely I could sign her key using gpg --edit [EMAIL PROTECTED] and say that I trust it completely.
true.
4. Now if A communicates with B and trusts B completely (and I trust A completely) how does it help me communicate with B? A lot of webpages with people's
web of trust - you sign a key.
that key is used to sign another key - which gets trusted by you, because you signed the signing key.
... and so on.
keys say, "if you know me sign my key and send me a copy", what does that mean and what commands to do that (sign someone's key and send it to him)? How does this web of trust propogate, if at all it does?
signing key = you got it.
sending it - use mutt or pine to send the key - or dump it as a text file and attach it.
srs
-------------------------------------------------------
This SF.net email is sponsored by: Does your code think in ink? You could win a Tablet PC. Get a free Tablet PC hat just for playing. What are you waiting for?
http://ads.sourceforge.net/cgi-bin/redirect.pl?micr5043en
_______________________________________________
linux-india-help mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/linux-india-help
