[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
No Subject
> Two years ago, I pointed out that getting a single message past
> the man in the middle isn't good enough; you have to convince your
> readers that the key they received on one channel is more accurate
> than the key they're receiving on all the other channels.
> But if they'll believe that, they may also believe the man in the middle's
> announcement that the key in your name on all the keyservers is
> wrong, and the correct key is the one he's putting out.
> Can't win either way, but it's still important to get the key out.
>
> My current key is 0x54696D4D; the fingerprint is
> 4D 65 44 75 53 61 21 2F 41 73 55 64 85 6D 21 7F.
but this is not Tim May's key, his key is:
pub 1024/54E7483F 1992/11/20 Timothy C. May <[email protected]> 11-20-92
Key fingerprint = 8C 79 1C 1B 6F 32 A1 D1 65 FB 5F 57 50 6D D3 28
And this one is signed by these people:
pub 1024/54E7483F 1992/11/20 Timothy C. May <[email protected]> 11-20-92
sig 0022E52D Eric Hughes <[email protected]>
sig DDBE0DD5 John T. Draper <[email protected]>
sig 8F898631 Scott Collins (512) <[email protected]>
sig E972F011 E. Dean Tribble <[email protected]>
sig 4C131F57 Tim Oren <[email protected]>
sig F5257117 <[email protected]>
sig 85197FB5 John Gilmore <[email protected]>
at level two in the web of trust are these people:
pub 512/F5257117 1992/09/28 <[email protected]>
sig B1331439 Randy Bush <[email protected]>
Tom Jennings <[email protected]>
sig DA0EDC81 Phil Karn <[email protected]>
sig F572C6A7 Jim Cannell <[email protected]>
sig 0BD91A2D Phil Karn <[email protected]>
sig F5257117 <[email protected]>
Tom Jennings <[email protected], 1:125/111>
sig ADF733A9 Jesse David Hollington <1:225/[email protected]>
sig 4D077463 Steve Matzura <[email protected]>
sig E7F23D95 Mike Laster <1:170/300.23@fidonet>
sig DB910037 Barry Kapke <96:101/33@dharma>
sig 5B77854F Depository #1 [Public Keys]
sig 08F811DD Marcos R. Della <[email protected]>
sig 212EC54B Guy Martin 1:143/269 ([email protected])
sig F572C6A7 Jim Cannell <[email protected]>
sig BDFB1F2D George Gleason <[email protected]>
sig DDBE0DD5 John T. Draper <[email protected]>
sig 8F898631 Scott Collins (512) <[email protected]>
sig 0022E52D Eric Hughes <[email protected]>
sig E972F011 E. Dean Tribble <[email protected]>
sig 4C131F57 Tim Oren <[email protected]>
sig 85197FB5 John Gilmore <[email protected]>
sig DA27EC35 Wes Perkhiser <[email protected]>
sig E7960501 Paul Schencke <1:135/[email protected]>
sig 9DB252DF Mike Riddle
sig 734B9A59 Christopher Baker <1:374/[email protected]>
sig B1B6B823 GK Pace @ 1:374/26 <[email protected]
pub 1024/85197FB5 1992/11/08 John Gilmore <[email protected]>
sig 5ACB1C6D (Unknown signator, can't be checked)
sig 15100C27 (Unknown signator, can't be checked)
sig DA0EDC81 Phil Karn <[email protected]>
sig 0BD91A2D Phil Karn <[email protected]>
sig 9F9F38BB Mark Eichin <[email protected]>
sig 5B415621 Mark Eichin <[email protected]>
sig 66CE89B7 Mark Eichin <[email protected]>
sig 0022E52D Eric Hughes <[email protected]>
sig BDFB1F2D George Gleason <[email protected]>
sig DDBE0DD5 John T. Draper <[email protected]>
sig 8F898631 Scott Collins (512) <[email protected]>
sig 0245C435 Dave Krieger <[email protected]>
sig 4C131F57 Tim Oren <[email protected]>
sig E972F011 E. Dean Tribble <[email protected]>
sig F5257117 <[email protected]>
sig 71946BDF Phil Karn <[email protected]>
If you knew any of the level 1, or level 2 signatories personally and
had exchanged keys face to face, you'd have some assurance.
Also this level 3:
pub 1024/DA0EDC81 1994/07/25 Phil Karn <[email protected]>
sig ED2354B9 Ulla Sandberg <[email protected]>
sig 9C57B951 Peter Lothberg <[email protected]>
sig C7A966DD Philip R. Zimmermann <[email protected]>
PRZ, as your PGP distrbution is probably signed by this key, unless
you've inspected the source personally, you're relying on this key
anyway.
Level 4 would be a big web as lots of people fan out from PRZ.