> the flaw is in assigning FULL trust to the CA without the user's > permission.
Might want to bring this up on GnuPG-Users, then, since a future version of GnuPG is going to switch from WoT to TOFU, and that's *exactly* what you're talking about here.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net