You don't need to trust the keyservers since you verify the fingerprints of down... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		uaygsfdbzf on Dec 23, 2014 \| parent \| context \| favorite \| on: JMAP – a better way to email You don't need to trust the keyservers since you verify the fingerprints of downloaded keys against the fingerprints given to you in person. The keyserver protocol includes commands to include keys in the keyserver network. How you send keys depends on the UI of the tool you use, geeks will do this: gpg --keyserver <keyserver> --send-keys <fingerprint>

robn_fastmail on Dec 23, 2014 [–]

Right. I'm a little rusty on the details. My point stands - key distribution is not a solved problem for the average user.

uaygsfdbzf on Dec 24, 2014 | [–]

It is solved for some specific platforms, GNOME for example:

https://mail.gnome.org/archives/gnome-announce-list/2014-Nov...

The average user doesn't use GNOME or Linux though :(

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact