On Sun, Jul 01, 2001 at 07:07:17PM +0200, Eric Van Buggenhaut wrote:
> >
> > manoj came up with a pretty good protocol to sign a key. i have it
~
> > available in HTML at
> >
> > http://people.debian.org/~jaqque/keysign.html
>
> Nice to see you called it 'Manoj's Singing-Protocol' ;)
cr
On Thu, Jun 28, 2001 at 10:27:54AM -0700, John H. Robinson, IV wrote:
> On Thu, Jun 28, 2001 at 12:13:37PM -0500, Steve Langasek wrote:
> >
> > we should also require them to demonstrate a clear understanding of
> > PKI as part of the NM process.
>
> manoj came up with a pretty good protocol to s
On Sun, Jul 01, 2001 at 07:07:17PM +0200, Eric Van Buggenhaut wrote:
> >
> > manoj came up with a pretty good protocol to sign a key. i have it
~
> > available in HTML at
> >
> > http://people.debian.org/~jaqque/keysign.html
>
> Nice to see you called it 'Manoj's Singing-Protocol' ;)
c
On Thu, Jun 28, 2001 at 10:27:54AM -0700, John H. Robinson, IV wrote:
> On Thu, Jun 28, 2001 at 12:13:37PM -0500, Steve Langasek wrote:
> >
> > we should also require them to demonstrate a clear understanding of
> > PKI as part of the NM process.
>
> manoj came up with a pretty good protocol to
>>"Samuel" == Samuel Tardieu <[EMAIL PROTECTED]> writes:
Samuel> Well, then why not talk about "id signing" instead of "key
Samuel> signing" which exists but designates a completely different
Samuel> thing that also exists in GPG?
Because these procedures have been known as key signin
>>"Samuel" == Samuel Tardieu <[EMAIL PROTECTED]> writes:
Samuel> Well, then why not talk about "id signing" instead of "key
Samuel> signing" which exists but designates a completely different
Samuel> thing that also exists in GPG?
Because these procedures have been known as key signi
On 29/06, Manoj Srivastava wrote:
| Actually, the real flaw seems to be that my email assumed that
| the protocol was going to be used by people who had a modicum of
| inductive reasoning. The outline mentions just one ID in the key
| being verified and signed, and I assumed that anyone
>>"Samuel" == Samuel Tardieu <[EMAIL PROTECTED]> writes:
Samuel> It has an enormous flaw: you do not sign a key, you sign an
Samuel> id. That means that checking for one e-mail address for being
Samuel> valid and signing all the ids is just bogus. You may use this
Samuel> protocol, but you hav
On 29/06, Manoj Srivastava wrote:
| Actually, the real flaw seems to be that my email assumed that
| the protocol was going to be used by people who had a modicum of
| inductive reasoning. The outline mentions just one ID in the key
| being verified and signed, and I assumed that anyone
>>"Samuel" == Samuel Tardieu <[EMAIL PROTECTED]> writes:
Samuel> It has an enormous flaw: you do not sign a key, you sign an
Samuel> id. That means that checking for one e-mail address for being
Samuel> valid and signing all the ids is just bogus. You may use this
Samuel> protocol, but you ha
On 28/06, John H. Robinson, IV wrote:
| http://people.debian.org/~jaqque/keysign.html
|
| it does have some weaknesses, but it is a lot stronger than the ``oh,
| i've met you, i have checked your ID, and off we go''
|
| comments welcome.
It has an enormous flaw: you do not sign a key, you sign
On Thu, Jun 28, 2001 at 12:13:37PM -0500, Steve Langasek wrote:
>
> we should also require them to demonstrate a clear understanding of
> PKI as part of the NM process.
manoj came up with a pretty good protocol to sign a key. i have it
available in HTML at
http://people.debian.org/~jaqque/keysig
On 28/06, John H. Robinson, IV wrote:
| http://people.debian.org/~jaqque/keysign.html
|
| it does have some weaknesses, but it is a lot stronger than the ``oh,
| i've met you, i have checked your ID, and off we go''
|
| comments welcome.
It has an enormous flaw: you do not sign a key, you sign
On Thu, Jun 28, 2001 at 12:13:37PM -0500, Steve Langasek wrote:
>
> we should also require them to demonstrate a clear understanding of
> PKI as part of the NM process.
manoj came up with a pretty good protocol to sign a key. i have it
available in HTML at
http://people.debian.org/~jaqque/keysi
14 matches
Mail list logo
