[colug-432] PGP Signing Party
William Yang
wyang at gcfn.net
Tue Dec 21 08:04:22 EST 2010
On Tue, 2010-12-21 at 08:00 -0500, Steve VanSlyck wrote:
> Apologies for asking a really stupid question, but why do I need anyone to
> sign my key. I understand that private keys are self-generated, then used
> to create the public key which is provided to one's intended recipient,
> and that's that.
Do you have to? No.
However, what's to stop some hostile person from creating a key that
claims to be Steve VanSlyck and using it... other than signing and the
reputation-based web of trust?
-Bill
--
William Yang
wyang at gcfn.net
More information about the colug-432
mailing list