--N8NGGaQn1mzfvaPg
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

On Wed, May 19, 2004 at 09:51:45AM +1000, Daniel Carosone wrote:
> The user gets to decide which other certificates to trust, [...] or
> "the one that came with the release I just installed".

Which, just to be clear in reference to previous discussion, would of
course be externally signed for pre-install validation via a number of
other tools and platforms and trust models, including gpg.

--
Dan.

--N8NGGaQn1mzfvaPg
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (NetBSD)

iD8DBQFAqqWlEAVxvV4N66cRAr22AKC6lSJyskrF7FliCO4cL7m/DP+iaACg7Agu
57F8KSq/twQS5uSY1cHHUPY=
=YiF4
-----END PGP SIGNATURE-----

--N8NGGaQn1mzfvaPg--