Hi all,
I read 20 GPG tutorials and I get all the crypto stuff so far. It's not rocket science.
But one aspect of it that NOBODY explains in zero of the tutorials is the actual verification of the email associated with a private/public keypair.
What stops me from creating a private/public key pair and entering "Joe Biden <joe.biden@gov.us>" for email address, then uploading the key on a public GPG keyserver?
I don't see nowhere a authentication method in place that would actually send an email to that email address for verification, like it's common in online registrations or password resets.
Please someone of you who know about gpg explain the process to me.
I don't use gpg to "send encrypted emails" or such. Only for local file encrypt/decryptions and for things like github.
Thanks.
"There will be no end to the troubles of humanity, until philosophers become kings, or kings become philosophers.", Plato.
"Hyperbole will destroy us all.", Matt Dillahunty.
"The hyperbole, the demonization of the other opinion and the unwillingness to even read the opposing opinion destroys the so important political discussions necessary for the well functioning of society.", Couleur
