Subject: Re: key trust management (Re: adding gpg to src/gnu/dist)
To: None <tech-userlevel@NetBSD.ORG>
From: Simon J. Gerraty <>
List: tech-userlevel
Date: 05/15/2004 20:23:30
>> accumulated in a web-of-trust manner between users, with a points
>> scheme.  I tend to call it "Certrimetics" because it has a surface
>> similarity with the various MLM schemes, but it's a practical and
>> effective illustration of the point.

>But if I understand correctly it's still not a true web-of-trust.
>There's still one root certificate that ultimately has to be trusted.

Well actually with OpenSSL, the search can stop at the first trusted issuer
(ie. the first CA cert found in /etc/certs or whereever).