On Wed 2015-09-23 13:28:05 -0400, Robert J. Hansen wrote: >> the flaw is in assigning FULL trust to the CA without the user's >> permission. > > Might want to bring this up on GnuPG-Users, then, since a future version > of GnuPG is going to switch from WoT to TOFU, and that's *exactly* what > you're talking about here.
I think the plan isn't to enforce a switch from the classic GnuPG trust model to TOFU, but to offer TOFU as a mechanism that can augment the classic GnuPG trust model. At any rate, TOFU is definitely *not* the X.509 CA model. --dkg _______________________________________________ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net