Jens Lechtenboerger [2018-04-30 08:19:39+02] wrote:
> You don’t. You should not trust them if you don’t know anything about
> them.
> Personally, I try to verify CAs’ fingerprints. Afterwards, I express
> my “trust” in other people’s choices of CAs when verifying their
> signatures (so, pretend
Hi,
On Thursday, April 26, 2018 4:36:59 PM CEST Liana Falchetti wrote:
> I work at a credit union that gets CD's with archived information on them
> that upon arrival need to be Decrypted and verified by the GnuPG software.
>
> I have to say that I have never used GnuPG software for anything
On 2018-04-28, Teemu Likonen wrote:
> When verifying an S/MIME message gpgsm (I think) asks whether I
> ultimately trust some certificate authority to certify others and then
> asks me to verify that a displayed fingerprint belongs to the authority.
> How do I know? (So far I have pressed the
