On Sun, May 14, 2017 at 09:45:13PM -0500, Andrew David Wong wrote: > >> (2), meanwhile, requires transferring the key to the QMSK's environment > >> via: > > > > <snip> > > > > We're in agreement that's a less-than-wise idea. :) > > > > Great points. Thanks! I think your setup would have been preferable, > since I'm pretty sure Marek's key was generated on a different machine > (in which case some kind of riskier transfer must have occurred, but > perhaps special precautions were taken).
However, if that was done, is it really Marek's key? I'd want to think carefully about putting my name on such a key if I hadn't generated it on my machine. OTOH, Marek doesn't appear to have actually signed that key with any other key, so maybe he and I agree on this point. :) -- https://petertodd.org 'peter'[:-1]@petertodd.org -- You received this message because you are subscribed to the Google Groups "qubes-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-devel+unsubscr...@googlegroups.com. To post to this group, send email to qubes-devel@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-devel/20170515025212.GA17697%40fedora-23-dvm. For more options, visit https://groups.google.com/d/optout.
signature.asc
Description: Digital signature