> You know, you could put keys into freenet and use the fingerprint as
> the file key to get them out.
>
Or, better, use CHK's to insert them, and have a KHK like
"scgmille at indiana.edu/pgp-key", as well as the fingerprint point to
that. Then you fetch by email, calculate the fingerprint, fetch that and
check for a match. If you don't have one, don't trust the key (either an
adversary comprimised one or the other).
Scott
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
URL:
<https://emu.freenetproject.org/pipermail/devl/attachments/20000603/80324d92/attachment.pgp>
