On Fri, Jan 28, 2005 at 10:03:55AM +0100, Werner Koch wrote: > > it may be possible to retrieve both parts of someone's key, especially > > since it may be likely they have both parts stored on a server used > > for e-mail. Using man-in-the-middle techniques, it may be possible to > > If you need to store the user's secret part of a public key pair on a > server, your setup is seriously flawed. It isn't a question of need, ususally; it's more a combination of convenience and naive users. I won't argue whether it's a bad idea, but only point out that it's the reality we live in... -- Derek D. Martin http://www.pizzashack.org/ GPG Key ID: 0xDFBEAD02 -=-=-=-=- This message is posted from an invalid address. Replying to it will result in undeliverable mail. Sorry for the inconvenience. Thank the spammers.
Attachment:
pgpiMPCneMQoJ.pgp
Description: PGP signature