On Apr 17, 2013, at 11:12 PM, mirimir <miri...@riseup.net> wrote:

> On 04/17/2013 06:45 PM, NdK wrote:
> 
>> Il 17/04/2013 18:22, Doug Barton ha scritto:
>> 
>>> It's very safe to assume that e-mail address harvesting from the key
>>> servers is not anything to worry about.
>> At least for now.
>> But spam is just one of the possible issues...
>> 
>> Anyway I can see that the easiest and more versatile solution is to have
>> different identities for different communities (one for work, one for
>> personal use, one for hacking communities, ...). Eventually all
>> cross-signed.
> 
> Why would one cross-sign keys for identities used in different
> communities? That would link them, which seems counterproductive.

I think this could go either way, depending on the communities and identities 
(and people) involved.  For me, if I made a work key, I'd probably cross sign 
(or at least sign my work key using my personal key) as it would give a better 
path to the work key in the web of trust.  At the same time, though, if I made 
a key for a particular community where I wasn't directly known as "David Shaw", 
I'd probably not cross sign for the reason you imply - I wouldn't want the two 
identities linked.

David


_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Reply via email to