[clug-talk] LinuxFest - 'web of trust'.

Mark Carlson carlsonmark at gmail.com
Tue May 2 17:58:41 PDT 2006


On 5/2/06, simon <simon at mungewell.org> wrote:
> Hi,
> General convention is that you don't expect someone to insert a floppy
> or flash card into their machine (you might have a clever virus on it),
> and you should never place your secret key on a machine that you don't
> trust (which you would need to do to sign a key).
>
> So in the case where you don't want to make your public key public (lots
> of valid reasons for than) that you can confirm identy and exchange
> fingerprints, but then arrange to email each other your public keys.
>
> You can then sign as normal and email the result back.
>
> I have placed my public key on my website, so if it weren't on a
> keyserver you could get it from there.
>
> Another really interesting option is to print it out in machine readable
> format, OCR is a possibilty but 2D barcodes are more fun :-)

I wonder if someone has made a punch card reader/writer for this...
That would be fun :-)

-Mark



More information about the clug-talk mailing list