From owner-freebsd-security Mon Mar 24 3: 9:46 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6CCF137B401 for ; Mon, 24 Mar 2003 03:09:43 -0800 (PST) Received: from pcwin002.win.tue.nl (pcwin002.win.tue.nl [131.155.71.72]) by mx1.FreeBSD.org (Postfix) with ESMTP id 54DBA43FAF for ; Mon, 24 Mar 2003 03:09:42 -0800 (PST) (envelope-from stijn@pcwin002.win.tue.nl) Received: from pcwin002.win.tue.nl (orb_rules@localhost [127.0.0.1]) by pcwin002.win.tue.nl (8.12.8/8.12.8) with ESMTP id h2OB9SSZ067819; Mon, 24 Mar 2003 12:09:28 +0100 (CET) (envelope-from stijn@pcwin002.win.tue.nl) Received: (from stijn@localhost) by pcwin002.win.tue.nl (8.12.8/8.12.8/Submit) id h2OB99fW067818; Mon, 24 Mar 2003 12:09:09 +0100 (CET) Date: Mon, 24 Mar 2003 12:09:09 +0100 From: Stijn Hoop To: Michael Nottebrock Cc: budsz , FreeBSD-Security Subject: Re: About *.asc Message-ID: <20030324110909.GH67203@pcwin002.win.tue.nl> References: <20030321081451.GA13163@kumprang.or.id> <20030321082038.GC54854@pcwin002.win.tue.nl> <200303211429.09017.michaelnottebrock@gmx.net> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="LTeJQqWS0MN7I/qa" Content-Disposition: inline In-Reply-To: <200303211429.09017.michaelnottebrock@gmx.net> User-Agent: Mutt/1.4i X-Bright-Idea: Let's abolish HTML mail! X-Spam-Status: No, hits=-38.8 required=5.0 tests=EMAIL_ATTRIBUTION,IN_REP_TO,PGP_SIGNATURE_2, QUOTED_EMAIL_TEXT,REFERENCES,REPLY_WITH_QUOTES, USER_AGENT_MUTT autolearn=ham version=2.50 X-Spam-Level: X-Spam-Checker-Version: SpamAssassin 2.50 (1.173-2003-02-20-exp) Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --LTeJQqWS0MN7I/qa Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Mar 21, 2003 at 02:29:08PM +0100, Michael Nottebrock wrote: > On Friday 21 March 2003 09:20, Stijn Hoop wrote: > > To tell gpg that you trust that this is the key used by the FreeBSD > > officer: > > > > $ gpg --edit-key security-officer@freebsd.org > > > > enter 'trust' and then e.g. '4'. >=20 > Not quite. What you've just told gpg there is that you trust the owner of= the=20 > key to have an excellent understanding of key signing, and that his signa= ture=20 > on a key would be as good as your own. OK, I didn't know that (evidently). > The basic expression of trust in pgp is signing / locally signing a key. So you're saying that I should (at least locally) sign all keys that I *know* belong to a person? In other words, since it's obviously impractical to have everyone sign the FreeBSD security officer's key, I should locally sign it to signify *my* trust in the fact that that key really belongs to the officer? I'm just trying to make sure I understand here. Thanks for the clarificatio= n. --Stijn --=20 In the force if Yoda's so strong, construct a sentence with words in the proper order then why can't he? --LTeJQqWS0MN7I/qa Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+fudVY3r/tLQmfWcRArSrAKCueCvINKDu3DEQUZIromh8cVGN1gCffwK5 n1jDi26WSV0mNQMG7WdDYOU= =ck/d -----END PGP SIGNATURE----- --LTeJQqWS0MN7I/qa-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message