|
|
|
|
|
|
by zobzu
4046 days ago
|
|
|
The issue with this is that gpg doesnt check these keys when you sign them (presumably because speed) So even if you verify the persons identity correctly when you sign their key you can't tell if the key is garbage easily. In fact i guess it doesn't matter much if the other person communicating with you is fooling you amd forwarding all the things he receives to the nsa/whay not regardless ;) |
|
|