From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: <gentoo-dev-return-5138-arch-gentoo-dev=gentoo.org@gentoo.org> Received: (qmail 10004 invoked by uid 1002); 30 Jul 2003 15:57:17 -0000 Mailing-List: contact gentoo-dev-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: <mailto:gentoo-dev@gentoo.org> List-Help: <mailto:gentoo-dev-help@gentoo.org> List-Unsubscribe: <mailto:gentoo-dev-unsubscribe@gentoo.org> List-Subscribe: <mailto:gentoo-dev-subscribe@gentoo.org> List-Id: Gentoo Linux mail <gentoo-dev.gentoo.org> X-BeenThere: gentoo-dev@gentoo.org Received: (qmail 25906 invoked from network); 30 Jul 2003 15:57:17 -0000 From: Corey Shields <cshields@gentoo.org> To: gentoo-dev@gentoo.org In-Reply-To: <20030730154001.GA19809@zaphod.anachem.ruhr-uni-bochum.de> References: <1059579304.13765.29.camel@localhost> <20030730154001.GA19809@zaphod.anachem.ruhr-uni-bochum.de> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-wQgLWA78pjLbkzOieWPQ" Organization: Gentoo Linux - Infrastructure Team Message-Id: <1059580628.13765.36.camel@localhost> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.3 Date: 30 Jul 2003 10:57:09 -0500 Subject: Re: [gentoo-dev] Keysigning at LWE X-Archives-Salt: 204ce76b-c934-4664-aec0-76e212f2823d X-Archives-Hash: 62f267e4c06363333737944a0ee4f244 --=-wQgLWA78pjLbkzOieWPQ Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Wed, 2003-07-30 at 10:40, Patrick Kursawe wrote: > Perhaps I misunderstand you, but are you actually encouraging people > to sign keys they did not personally verify? Yes. However, there will be others at the booth that they can personally verify as well when they come to veryify their own identity, and if the people at the booth verify everyone else, then it's all the same, which is why it's called a "web" of trust. If you come to verify and trust the people in the booth, who verify everyone else, then it should be the same. If you don't trust the people in the booth who are verifying everone else, then should you be allowing them to sign your key in the first place? > What's the idea behind this, if weakening the web of trust isn't? :-) Not really. > Just wondering, That's okay. I figured some people would have a beef with it, which is why I stressed that it's a voluntary thing. If you're not comfortable with this method, then you don't have to participate.=20 Cheers! --=20 Corey Shields - Gentoo Linux Infrastructure Team http://www.gentoo.org/~cshields --=-wQgLWA78pjLbkzOieWPQ Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQA/J+rUpq/4o6MEFFMRAtPdAJ0ZS6RtY15Evqk9qnYI0xEwHHjpDwCaA2Vv SeqYCEx8yJvFNxSFUYk//8w= =QnrW -----END PGP SIGNATURE----- --=-wQgLWA78pjLbkzOieWPQ--