Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 24 Mar 2003 12:09:09 +0100
From:      Stijn Hoop <stijn@win.tue.nl>
To:        Michael Nottebrock <michaelnottebrock@gmx.net>
Cc:        budsz <budsz@kumprang.or.id>, FreeBSD-Security <freebsd-security@freebsd.org>
Subject:   Re: About *.asc
Message-ID:  <20030324110909.GH67203@pcwin002.win.tue.nl>
In-Reply-To: <200303211429.09017.michaelnottebrock@gmx.net>
References:  <20030321081451.GA13163@kumprang.or.id> <20030321082038.GC54854@pcwin002.win.tue.nl> <200303211429.09017.michaelnottebrock@gmx.net>
next in thread | previous in thread | raw e-mail | index | archive | help 

--LTeJQqWS0MN7I/qa
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Mar 21, 2003 at 02:29:08PM +0100, Michael Nottebrock wrote:
> On Friday 21 March 2003 09:20, Stijn Hoop wrote:
> > To tell gpg that you trust that this is the key used by the FreeBSD
> > officer:
> >
> > $ gpg --edit-key security-officer@freebsd.org
> >
> > enter 'trust' and then e.g. '4'.
>=20
> Not quite. What you've just told gpg there is that you trust the owner of=
 the=20
> key to have an excellent understanding of key signing, and that his signa=
ture=20
> on a key would be as good as your own.

OK, I didn't know that (evidently).

> The basic expression of trust in pgp is signing / locally signing a key.

So you're saying that I should (at least locally) sign all keys that I
*know* belong to a person?

In other words, since it's obviously impractical to have everyone sign
the FreeBSD security officer's key, I should locally sign it to signify
*my* trust in the fact that that key really belongs to the officer?

I'm just trying to make sure I understand here. Thanks for the clarificatio=
n.

--Stijn

--=20
In the force if Yoda's so strong, construct a sentence with words in
the proper order then why can't he?

--LTeJQqWS0MN7I/qa
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (FreeBSD)

iD8DBQE+fudVY3r/tLQmfWcRArSrAKCueCvINKDu3DEQUZIromh8cVGN1gCffwK5
n1jDi26WSV0mNQMG7WdDYOU=
=ck/d
-----END PGP SIGNATURE-----

--LTeJQqWS0MN7I/qa--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030324110909.GH67203>