mysterious PGP release-signing keys

New Message Reply About this list Date view Thread view Subject view Author view

Dave Del Torto (ddt@ciphr.org)
Sun, 20 Dec 1998 14:09:45 -0800


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Please excuse the crosspost, but does anyone know *who* generated and/or
owns these keys?

 0xBB1EEF1B Verify
 0xC8501551 Verify Key for http://www.arc.unm.edu/~drosoff/*
 0xAA9AE13F Verify PGP 6.0.2 PP - RSA
 0x772B7382 VERIFY <VERIFY@gnwmail.com>

They seem to be used for signing/verifying PGP releases (e.g. the 602 by CKT
at Replay), but there's nothing on the keys that identifies the responsible
engineer who compiled the source, nor do some of them seem to be certified
by anyone in the WoT. Questions have been raised about the authenticity and
security of those compiles and these keys.

   dave

-----BEGIN PGP SIGNATURE-----
Version: PGP 6.0.2
Comment: Get interested in computers -- they're interested in YOU!

iQA/AwUBNn11mJBN/qMowCmvEQI4IwCfad0S9Algw7PPDsgWChimC4Cx6dcAnjtu
h2trwMi08tJMCD76W6W8DP/L
=TFuT
-----END PGP SIGNATURE-----


New Message Reply About this list Date view Thread view Subject view Author view

 
All trademarks and copyrights are the property of their respective owners.

Other Directory Sites: SeekWonder | Directory Owners Forum

The following archive was created by hippie-mail 7.98617-22 on Sat Apr 10 1999 - 01:17:38