On Thursday 11 Sep 2008, Anupam Jain wrote:
> On Thu, Sep 11, 2008 at 10:31 AM, Raj Mathur <[EMAIL PROTECTED]> 
wrote:
> > Let's pray to whatever Gods or Chaos or Probability we believe in
> > that they never do.  GPG/PGP on a web-mail service is an oxymoron
> > -- the whole point of personal privacy is lost if you're delegating
> > signing and/or verification to some III-party.
>
> Yes but a *mutually trusted* third party.

...and that mutually trusted III-party would be?  Will you trust the 
people I do, and will I trust the people you do?

In general, the objective of GPG is to provide end-users with the 
ability to encrypt and sign their messages themselves.  If you want to 
delegate some part of that trust to another entity probably the best 
thing to do is use certificates from one of the many certificate shops 
on the 'net.

Remember the Bad Old Days when top executives and bureaucrats used to 
have their secretaries reading their mail?  Do we have secretaries 
encrypting and validating mails with GPG keys now? :)

Regards,

-- Raju
-- 
Raj Mathur                [EMAIL PROTECTED]      http://kandalaya.org/
       GPG: 78D4 FC67 367F 40E2 0DD5  0FEF C968 D0EF CC68 D17F
PsyTrance & Chill: http://schizoid.in/   ||   It is the mind that moves

_______________________________________________
ilugd mailinglist -- ilugd@lists.linux-delhi.org
http://frodo.hserus.net/mailman/listinfo/ilugd
Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi 
http://www.mail-archive.com/ilugd@lists.linux-delhi.org/

Reply via email to