From: Brad Templeton (brad@templetons.com)
Date: Wed Oct 10 2001 - 21:36:12 CDT
On Wed, Oct 10, 2001 at 11:56:36AM +0000, Charles Lindsey wrote:
> In <20011009131303.I8798@main.templetons.com> Brad Templeton <brad@templetons.com> writes:
>
> >I've answered this so many times, I am surprised you've missed it.
> >The keys are in certificates, they are included with the article itself.
> >All you need to install (or in fact all your news software author includes
> >if you trust him or her) is the set of root CA keys you wish to trust.
>
> No Way! It is just too complicated as the basic mechanism and, as I
> already explained in response to Andrew, is quite impracticable for
> cancels - certainly for single ones.
>
> What is actually needed is a distributed database containing useful keys,
> certificates, revocations, etc. The present PGP key servers are NOT
> particularly suitable for this, but I could imagine a database that was
> maintained by the Usenet progagation mechanism, using certain moderated
> groups, and maybe the Replaces or Named-Article facility.
This is far more complex than just putting the certificates in the articles.
Why is putting the certificates in the articles so bothersome to you?