On 2012-07-01 11:26, Kiss Gabor (Bitman) wrote: > > Oh, I see. > > Why do you trust John? (I hope I don't hurt him with this question. :-) > Why do you think peoples trust _you_? > Do all of them known you personally since ten years? > If a user was cautious, (s)he would download thousands more keys (s)he > need or operates an own key server.
I agree that operating an own key server is a sane approach in such a scenario. > Anyway. Why does somebody think no one eavesdrops his/her key requests? > > In your special case: you may redirect users to > a trusty key server. (I hope you know at least one beside yours. :-) > If some users trust you as a key server operator, they must > trust your choice of fallback server too. > > Cheers > Different users have different preferences. Why make the choice for them? I agree that it is better to have a single server be offline, for the users that want the convenience of automated filtering for this, they have the pool. If users, for any reason, prefer a single keyserver - they are better off knowing about it. -- ---------------------------- Kristian Fiskerstrand kristian.fiskerstr...@sumptuouscapital.com http://www.sumptuouscapital.com Twitter: @krifisk ---------------------------- Corruptissima re publica plurimæ leges The greater the degeneration of the republic, the more of its laws ---------------------------- This email was digitally signed using the OpenPGP standard. If you want to read more about this The book: Sending Emails - The Safe Way: An introduction to OpenPGP security is now available in both Amazon Kindle and Paperback format at http://www.amazon.com/dp/B006RSG1S4/ ---------------------------- Public PGP key 0xE3EDFAE3 at http://www.sumptuouscapital.com/pgp/
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
