[Bug 44699] can't encrypt with gpg if the receiver's key is not
signed
Thomas Zander
zander at kde.org
Thu Feb 1 21:33:10 CET 2007
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
You are a voter for the bug, or are watching someone who is.
http://bugs.kde.org/show_bug.cgi?id=44699
------- Additional Comments From zander kde org 2007-02-01 21:33 -------
On Thursday 01 February 2007 20:51, Thiago Macieira wrote:
> If you can't verify the identity, why are you using the key at all?
Because with encryption you don't need to know the person that is attached to
the email. Just that there is an email you are sending an encrypted email to.
In other words; web-of-trust is optional when using encryption.
Oh, before you disagree to that point, its not a statement of fact, its my
opinion. And you may disagree, but that doesn't make it false or incorrect.
> And you know you can sign locally only.
I recently had this issue;
I have a conversation with 3 people. All of them have gpg and all emails are
encrypted.
Now I include someone else in the conversation. That 4th person can't encrypt
emails if he falls outside the web of trust. So he can't reply encrypted
without signing 3 keys locally.
Effect; the conversation either has to drop him out of the cc list or stop
being encrypted.
> I don't think your argument holds.
I think it makes a lot of sense. You are basically arguing that the solution
is not needed due to there being a workaround. From my point of view you are
just trying to say that the voters for this bug have to just start using GPG
*correctly* and it will just work.
The post from josh countering that may have been worded a bit too blunt, but I
surely see his point.
More information about the pkg-kde-bugs-fwd
mailing list