Re: [Sks-devel] "quality" of keyservers offering hkps

sks-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] "quality" of keyservers offering hkps

From:	Kristian Fiskerstrand
Subject:	Re: [Sks-devel] "quality" of keyservers offering hkps
Date:	Thu, 14 Aug 2014 14:23:53 +0200
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.0

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On 08/14/2014 02:12 PM, Christoph Egger wrote:
> "Kiss Gabor (Bitman)" <address@hidden> writes:
>>> - mitm attacks  may manipulate up-/downloaded keys
>> 
>> no
>> 
>> Every uploaded key can be manipulated legally by anyone. (I.e.
>> you attach a new signature to your friend's key and you send back
>> to the key servers.) Moreover anybody can send a totally new key
>> in the name of you. Public key server is like Wikipedia or a
>> piece of paper. And everybody has a pencil. :-)
> 
> You can still block certain pakets from up/downloads (i.e. not 
> providing signature pakets for some key -- kind of a DoS when
> checking a trust path)

Or even more importantly, providing a public key where a revocation
signature has been removed.

- -- 
- ----------------------------
Kristian Fiskerstrand
Blog: http://blog.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Public OpenPGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
- ----------------------------
Nosce te ipsum!
Know thyself!
-----BEGIN PGP SIGNATURE-----
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=nzIX
-----END PGP SIGNATURE-----

[Prev in Thread]

Current Thread

[Next in Thread]

[Sks-devel] "quality" of keyservers offering hkps, Matthias Schreiber, 2014/08/13
- Re: [Sks-devel] "quality" of keyservers offering hkps, Phil Pennock, 2014/08/13
  - Re: [Sks-devel] "quality" of keyservers offering hkps, Matthias Schreiber, 2014/08/14
    - Re: [Sks-devel] "quality" of keyservers offering hkps, Kiss Gabor (Bitman), 2014/08/14
    - Re: [Sks-devel] "quality" of keyservers offering hkps, Christoph Egger, 2014/08/14
    - Re: [Sks-devel] "quality" of keyservers offering hkps, Kristian Fiskerstrand <=
    - Re: [Sks-devel] "quality" of keyservers offering hkps, Pete Stephenson, 2014/08/14
    - Re: [Sks-devel] "quality" of keyservers offering hkps, Kristian Fiskerstrand, 2014/08/14
    - Re: [Sks-devel] "quality" of keyservers offering hkps, Pete Stephenson, 2014/08/14
    - Re: [Sks-devel] "quality" of keyservers offering hkps, Kristian Fiskerstrand, 2014/08/14
    - Re: [Sks-devel] "quality" of keyservers offering hkps, Gabor Kiss, 2014/08/14
    - Re: [Sks-devel] "quality" of keyservers offering hkps, Phil Pennock, 2014/08/14
- Re: [Sks-devel] "quality" of keyservers offering hkps, Gabor Kiss, 2014/08/14

Prev by Date: Re: [Sks-devel] "quality" of keyservers offering hkps
Next by Date: Re: [Sks-devel] "quality" of keyservers offering hkps
Previous by thread: Re: [Sks-devel] "quality" of keyservers offering hkps
Next by thread: Re: [Sks-devel] "quality" of keyservers offering hkps
Index(es):
- Date
- Thread