[linux-elitists] RFC 2015 (MIME and PGP) -- RFC status?
Seth David Schoen
Mon Mar 12 17:37:58 PST 2001
Mr . Bad writes:
> >>>>> "RM" == Rick Moen <firstname.lastname@example.org> writes:
> RM> A lot of people think you can sprinkle holy crypto-pee over
> RM> keys and make them magically self-authenticate using
> RM> "certificates", or grab them off Web pages, or make them
> RM> spring forth like Athena from the head of Zeus using DNSSEC.
> Still not following you here. You can grab my personal key from here:
> ...and verify the signatures on it. It's a Web-of-Trust thing versus a
> centralized certificate authority, but the idea is pretty much the
> Is your point that, just because I got your key from your Web page,
> there's no way I can be sure it's you? That's absolutely true. Hell,
> there are so many Moriarties between me and linuxmafia.com it makes my
> head spin.
Some people are using crypto even with people they don't know and
then figuring that their communications are secure and the people
are authenticated -- absent something like the web of trust.
> DNSSEC I don't recognize. What's that?
... merging CAish stuff with nameservice.
Seth David Schoen <email@example.com> | And do not say, I will study when I
Temp. http://www.loyalty.org/~schoen/ | have leisure; for perhaps you will
down: http://www.loyalty.org/ (CAF) | not have leisure. -- Pirke Avot 2:5
More information about the linux-elitists