I'm trying to wrap my head around the PGP key-signing idea, as I'd like to participate tomorrow at OpenWest, but I've never really used PGP before.
The OpenWest page regarding the party gives some information, but it seems incomplete. https://www.openwest.org/key-signing-party/ >From what I understand, I: 1. Generate a PGP keypair (gpg --gen-key). 2. Send an email with my PUBLIC key only (not fingerprint, right?) to Aaron 3. Print out the fingerprint via `gpg --fingerprint "[email protected]"` and bring that info to the party 4. At the party read off key info -- just fingerprint? 5. Verify others' keys and IDs 6. ... What and when is the actual "key signing"? Each verified individual signs every other verified individual's keys (implying some basic idea that to the extent of my knowledge, they are who they say they are)? Sorry if these seem like stupid questions. It's all pretty foreign to me. Once I get a better understanding of the idea, as an introvert, my next challenge will be psyching myself up to make that many small human interactions. :) /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
