[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: certification of signatures



Markku Kolkka wrote:
> There's a lack of trust, not lack of certification. Those are two
> different things when talking about the GPG/PGP "web of trust"
> certification scheme. You haven't specified the level of trust that
> you have on the keys used to certify the Fedora signing key.

Setting the trust level on the key won't make the "key is not
certified with a trusted signature!" warning go away though.

The only way for the key to be treated as valid (which makes the
warning go away) is for a trusted key (or keys) to sign it.  This
means you could sign the key yourself (preferably with a local
signature rather than an exportable signature) or find enough other
signatures on the key made by people you trust.

-- 
Todd        OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Nothing strengthens authority so much as silence.
    -- Charles De Gaulle

Attachment: pgpYoCeXaKzdE.pgp
Description: PGP signature


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]