On Tue, 23 Jun 2009, Russ Allbery wrote:
> For example, I think US drivers' licenses are only verifiable by
> someone who's lived in that state or otherwise seen drivers'
> licenses from that state.
Nah; there's a guide published[1] which has all of them. [If you're a
bar tender or a notary, you h
martin f krafft writes:
> I will always challenge the "government-issued ID" due to the vastly
> differing standards across the globe, but "travel document" is
> actually a term that someone uttered earlier, which raises the bar a
> lot higher.
For example, I think US drivers' licenses are only
On Tue, Jun 23, 2009 at 09:18:43PM +0200, Luca Capello wrote:
> AFAIK no one has talked about OpenPGP cards since DebConf8, where I had
> some spare OpenPGP cards (with reader) to sell:
I think OpenPGP cards that support larger RSA than 1024 bit still
don't exist? It's slowly starting to be a conc
Hi Pablo!
On Tue, 23 Jun 2009 18:44:29 +0200, Pablo Castellano wrote:
> I can vaguely remember having read a message in this list (or maybe
> debconf-team?) about selling OpenPGP smartcards during DebConf9.
>
> I couldn't find that message but I have found that they were sold in
> DebConf8 and I w
On 06/23/2009 02:52 PM, martin f krafft wrote:
> Additional metadata, e.g. number and expiration date would
> be helpful.
This would certainly be useful from the smiting perspective, but might
raise privacy concerns if people don't want their passport number (or
whatever) bound to their OpenPGP ke
On Tue, 23 Jun 2009, Sami Liedes wrote:
> On Tue, Jun 23, 2009 at 10:43:53AM -0700, Don Armstrong wrote:
> > Perhaps it would be good enough to have the public
> > checksum-checking part of the keysigning party very early on in
> > Debconf, and then do the signing later on during meals, where
> > t
also sprach Daniel Kahn Gillmor [2009.06.23.1949
+0200]:
> --> govt-iss...@wot.debian.org might be a distinguished name
> identifying the apparent issuer of any validated identification,
> such as /C=US/ST=NY/ for a NY State (USA) driver's license and
> /C=US/ for an American passport. If you che
On Tue, Jun 23, 2009 at 10:43:53AM -0700, Don Armstrong wrote:
> Perhaps it would be good enough to have the public checksum-checking
> part of the keysigning party very early on in Debconf, and then do the
> signing later on during meals, where there would be an opportunity for
> more informal int
On Fri, 12 Jun 2009, Jonathan McDowell wrote:
> Maybe we we need is a "registry" of people who are happy to cross
> sign and who can be expected to have ID/fingerprints on them for
> much of the conference and then people can exchange details as part
> of other interactions?
Perhaps it would be go
On 06/23/2009 12:34 PM, Manoj Srivastava wrote:
> Frankly, recording the details of the verification performed is
> a first step to improving the ability to assess the strength of the
> link in the web of trust. A simple key sig is not enough, there could
> be a formal process to add to
On Tue, Jun 23 2009, Giacomo A. Catenazzi wrote:
> Manoj Srivastava wrote:
>> On Tue, Jun 23 2009, Giacomo A. Catenazzi wrote:
>
>>> I think you miss an important item: people with the same name. In my
>>> small town, I know a lot of people with same name (first and surname).
>>> In linux communi
Hello there.
I can vaguely remember having read a message in this list (or maybe
debconf-team?) about selling OpenPGP smartcards during DebConf9.
I couldn't find that message but I have found that they were sold in
DebConf8 and I wanted to know if we could buy them again in Cáceres as
well.
Will
Manoj Srivastava wrote:
> On Tue, Jun 23 2009, Giacomo A. Catenazzi wrote:
>> I think you miss an important item: people with the same name. In my
>> small town, I know a lot of people with same name (first and surname).
>> In linux community we have three different Alax Cox.
>
> Right.
On Tue, Jun 23 2009, Giacomo A. Catenazzi wrote:
> Manoj Srivastava wrote:
> (...)
>> Now really, we want to tie the key to a person -- even if they
>> resleeve (a. la. Altered Carbon, [0]). Thankfully, releeving is not
>> (yet) possible, so we don't have to deal with that. All we have t
Manoj Srivastava wrote:
(...)
> Now really, we want to tie the key to a person -- even if they
> resleeve (a. la. Altered Carbon, [0]). Thankfully, releeving is not
> (yet) possible, so we don't have to deal with that. All we have to do
> is to tie a key to a real live person, and do it
15 matches
Mail list logo
