At 09:09 AM 9/17/04 +0200, Thomas Shaddack wrote: >On Thu, 16 Sep 2004, Major Variola (ret) wrote: > >> At 02:17 PM 9/16/04 -0700, Joe Touch wrote: >> >Except that certs need to be signed by authorities that are trusted.
>> >> Name one. > >You don't have to sign the certs. Use self-signed ones, then publish a GPG >signature of your certificate in a known place; make bloody sure your GPG >key is firmly embedded in the web-of-trust. Right. And the known "trusted" place is 0wn3d by the Man. The web of trust is a scam. Know your pharmacist.