On 24/11/15 14:27, Olav Seyfarth wrote:
> Hi Bob,
>
>> People add PGP Key ID or Fingerprint to their signatures. Which is
>> preferable/better to help interested parties find your key?
>
> that depends on where your key is (on public server or not) and what
> your primary concern is:
>
[...]
>
> People often add their PGP Key ID or Fingerprint to their email
> signatures. Which is preferable/better to help interested parties find
> your key?
As a general rule, fingerprints. It's possible to use key IDs safely,
but it leaves the door open to a few attacks. It's easiest to close the
doo
On Tue 2015-11-24 07:27:41 -0500, Bob Williams wrote:
> People often add their PGP Key ID or Fingerprint to their email
> signatures. Which is preferable/better to help interested parties find
> your key?
The full fingerprint is better than the Key ID. The Key ID is trivially
spoofable (meaning t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi Bob,
> People add PGP Key ID or Fingerprint to their signatures. Which is
> preferable/better to help interested parties find your key?
that depends on where your key is (on public server or not) and what
your primary concern is:
If your key i
Firstly, can I say how much I like the Enigmail tool bar. Well done.
People often add their PGP Key ID or Fingerprint to their email
signatures. Which is preferable/better to help interested parties find
your key?
Bob
--
Bob Williams
System: Linux 4.1.12-1-default
Distro: openSUSE 42.1 (x86_64
