[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

No Subject




> Two years ago, I pointed out that getting a single message past
> the man in the middle isn't good enough; you have to convince your
> readers that the key they received on one channel is more accurate
> than the key they're receiving on all the other channels.
> But if they'll believe that, they may also believe the man in the middle's
> announcement that the key in your name on all the keyservers is
> wrong, and the correct key is the one he's putting out.
> Can't win either way, but it's still important to get the key out.
> 
> My current key is 0x54696D4D; the fingerprint is 
> 4D 65 44 75 53 61 21 2F   41 73 55 64 85 6D 21 7F.

but this is not Tim May's key, his key is:

pub  1024/54E7483F 1992/11/20 Timothy C. May <[email protected]> 11-20-92
          Key fingerprint =  8C 79 1C 1B 6F 32 A1 D1  65 FB 5F 57 50 6D D3 28 


And this one is signed by these people:

pub  1024/54E7483F 1992/11/20 Timothy C. May <[email protected]> 11-20-92
sig       0022E52D             Eric Hughes <[email protected]>
sig       DDBE0DD5             John T. Draper <[email protected]>
sig       8F898631             Scott Collins (512) <[email protected]>
sig       E972F011             E. Dean Tribble <[email protected]>
sig       4C131F57             Tim Oren <[email protected]>
sig       F5257117             <[email protected]>
sig       85197FB5             John Gilmore <[email protected]>


at level two in the web of trust are these people:

pub   512/F5257117 1992/09/28 <[email protected]>
sig       B1331439             Randy Bush <[email protected]>
                              Tom Jennings <[email protected]>
sig       DA0EDC81             Phil Karn <[email protected]>
sig       F572C6A7             Jim Cannell <[email protected]>
sig       0BD91A2D             Phil Karn <[email protected]>
sig       F5257117             <[email protected]>
                              Tom Jennings <[email protected], 1:125/111>
sig       ADF733A9             Jesse David Hollington <1:225/[email protected]>
sig       4D077463             Steve Matzura <[email protected]>
sig       E7F23D95             Mike Laster <1:170/300.23@fidonet>
sig       DB910037             Barry Kapke <96:101/33@dharma>
sig       5B77854F             Depository #1 [Public Keys]
sig       08F811DD             Marcos R. Della <[email protected]>
sig       212EC54B             Guy Martin 1:143/269 ([email protected])
sig       F572C6A7             Jim Cannell <[email protected]>
sig       BDFB1F2D             George Gleason <[email protected]>
sig       DDBE0DD5             John T. Draper <[email protected]>
sig       8F898631             Scott Collins (512) <[email protected]>
sig       0022E52D             Eric Hughes <[email protected]>
sig       E972F011             E. Dean Tribble <[email protected]>
sig       4C131F57             Tim Oren <[email protected]>
sig       85197FB5             John Gilmore <[email protected]>
sig       DA27EC35             Wes Perkhiser <[email protected]>
sig       E7960501             Paul Schencke <1:135/[email protected]>
sig       9DB252DF             Mike Riddle
sig       734B9A59             Christopher Baker <1:374/[email protected]>
sig       B1B6B823             GK Pace @ 1:374/26 <[email protected]

pub  1024/85197FB5 1992/11/08 John Gilmore <[email protected]>
sig       5ACB1C6D             (Unknown signator, can't be checked)
sig       15100C27             (Unknown signator, can't be checked)
sig       DA0EDC81             Phil Karn <[email protected]>
sig       0BD91A2D             Phil Karn <[email protected]>
sig       9F9F38BB             Mark Eichin <[email protected]>
sig       5B415621             Mark Eichin <[email protected]>
sig       66CE89B7             Mark Eichin <[email protected]>
sig       0022E52D             Eric Hughes <[email protected]>
sig       BDFB1F2D             George Gleason <[email protected]>
sig       DDBE0DD5             John T. Draper <[email protected]>
sig       8F898631             Scott Collins (512) <[email protected]>
sig       0245C435             Dave Krieger <[email protected]>
sig       4C131F57             Tim Oren <[email protected]>
sig       E972F011             E. Dean Tribble <[email protected]>
sig       F5257117             <[email protected]>
sig       71946BDF             Phil Karn <[email protected]>


If you knew any of the level 1, or level 2 signatories personally and
had exchanged keys face to face, you'd have some assurance.


Also this level 3:

pub  1024/DA0EDC81 1994/07/25 Phil Karn <[email protected]>
sig       ED2354B9             Ulla Sandberg <[email protected]>
sig       9C57B951             Peter Lothberg <[email protected]>
sig       C7A966DD             Philip R. Zimmermann <[email protected]>

PRZ, as your PGP distrbution is probably signed by this key, unless
you've inspected the source personally, you're relying on this key
anyway.


Level 4 would be a big web as lots of people fan out from PRZ.