On Thu, Feb 19, 2004 at 06:36:12PM +1100, David Uzzell wrote: > Just out of intrest what Keyservers do people use? I generally use > www.keyserver.net and over recent time have been watching some of the
subkeys.pgp.net and keyring.debian.org. > PGP signed emails comming in through SLUG list and other list's but from > the looks of it most people don't have their keys up on that set of > servers and some don't even have keys up anywere I could find to verifiy > the Signiture. > > If people use PGP, why would people sign emails without having their key > uploaded to a keyserver for other people to check their sig's if they want? SO that the people who do have your key can verify it, and so that if (in the future) someone challenges your authorship, you can provide the necessary proof-of-ownership. > What do people generally use PGP for? At this point it is fairly Signing e-mail, recieving encrypted e-mail, signing package uploads, verifying identities, and burning CPU time rebuilding the trust database. > challanging to get Customers to use it for secure emails. Some customers > ~ don't even care and just send things like CC number through email That would be another example of the old saw "most people are idiots". One of the things on my long term todo list is to introduce GPG principles into a financial planning firm I do work for, but first I have to wean them off Exchange and poor passwords... > without a care. Internally in our company we use it to secure all our > emails with server passwords and Doc's that you would not want to get > out in anyway shape or form. How the hell is encryption going to help with securing internal documents? Someone with legitimate access to the document can just decrypt it and send it out, and if they shouldn't have access to the document, you have ACLs to stop them from getting it. About the only thing it would protect is against breakin/theft, but if the document is that sensitive, I wouldn't bet the farm on someone withstanding mains to the goolies for their GPG passphrase. - Matt -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
