[Mageia-dev] [Off topic: GPG-signature]

Johnny A. Solbu cooker at solbu.net
Fri Nov 25 16:14:09 CET 2011


On Friday 25 November 2011 09:07, Maarten Vanraes wrote:
> usually one gives out the public key so that 
> people can use the public key to verify messages signed with the private key.

There are two ways of doing this. upload to ones website, and send it to a keyserver. I do both.
And it doesn't hurt to have friends and other persons you know sign the key. That way it's more authentic and people who don't know you but know or trust one or more of the persons who signed your key, is more likely to trust your key rather that another fake key.


I once missed the oppurtunity to have Richard Stallman sign my key. (I used to have my pgp fingerprint in my wallet.) It didn't occur to me to ask untill someone else mentioned that Stallman signed his key. And that was After Stallman had left the venue. I remember hearing a lot of people expressing slight frustrations for also missing the oppurtunity. ;-)=

-- 
Johnny A. Solbu
PGP key ID: 0xFA687324
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/mageia-dev/attachments/20111125/d22676c5/attachment.asc>


More information about the Mageia-dev mailing list