@matthew_d_green @kaepora @ioerror thanks, didn't get your point initially - which is, gpg key distribution has problems, too.
-
-
Replying to @kaiengert
@matthew_d_green tricky to find@ioerror's latest key. 42dde84f good but expired. C868227F not chained to old ones. Only 4193A197 looks ok.1 reply 0 retweets 2 likes -
Replying to @kaiengert
@kaiengert@ioerror Don't forget the ones that were clearly /not/ submitted by Jake.1 reply 0 retweets 1 like -
Replying to @matthew_d_green
@matthew_d_green@kaepora@ioerror I agree GPG key verification is often difficult, and some might skip it always, or when facing problems1 reply 0 retweets 0 likes -
Replying to @kaiengert
@matthew_d_green@kaepora@ioerror Nevertheless, verification of GPG key ownership is possible and encouraged by signing other's keys.1 reply 0 retweets 0 likes -
Replying to @kaiengert
@matthew_d_green@kaepora@ioerror maybe easier miniLock can inspire more people to encrypt, but we must still solve easier key doublecheck1 reply 0 retweets 0 likes -
Replying to @kaiengert
@matthew_d_green@kaepora@ioerror people will forget miniLock keys, too, I guess; MITM could easily fake the need to publish a replacement1 reply 0 retweets 0 likes -
Replying to @kaiengert
@matthew_d_green@kaepora@ioerror my comment focuses on trusting broadcasts on a proprietary service. But key on business card is great :)1 reply 0 retweets 0 likes -
Replying to @kaiengert
@kaiengert@kaepora@ioerror Well in practice my experience with PGP is that people point you to a key & a fingerprint.1 reply 0 retweets 0 likes -
Replying to @matthew_d_green
@kaiengert@kaepora@ioerror Web of trust is nice, but mostly garbage. What I like about Minilock keys is that they are the fingerprint.2 replies 2 retweets 4 likes
@matthew_d_green @kaiengert @kaepora @ioerror web of trust needs better UI/UX, and the keyserver model is just broken...
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.