PGP Policy
This is the Key Signing Policy for the PGP-Keys 0x93A0B9CE and 0x76B79F20.
You can grab the NEW key (0x93A0B9CE) here.
pub 2048R/0x58A2D94A93A0B9CE 2009-08-11
Key fingerprint = F4F6 B1A3 866B 26E9 450A 9D82 58A2 D94A 93A0 B9CE
uid Sebastian Wiesinger <sebastian@karotte.org>
uid Sebastian Wiesinger <sebastianw@gnupg.net>
Get the key at hkp://pool.sks-keyservers.net (HTML: http://pool.sks-keyservers.net:11371/pks/lookup?op=X&search=0x93A0B9CE).You can grab the OLD key (0x76B79F20) here.
pub 1024D/0x76B79F20 2000-11-05
uid Sebastian Wiesinger <sebastian@karotte.org>
Key fingerprint = F7C9 2DA7 ED4C 17B7 1523 98F5 1B60 34F4 76B7 9F20
uid Sebastian Wiesinger <bofh@fire-world.de>
Get the key at hkp://pool.sks-keyservers.net (HTML: http://pool.sks-keyservers.net:11371/pks/lookup?op=X&search=0x76B79F20).If you find a PGP-Key signed by me with this Key-IDs, the following rules apply:
- I trust the signed key enough for email communication.
- I checked the key and signed it with the following (GPG-)Level:
- Level 1:
- The key-owner could be a role account or an anonymous person. This means there is no "real" person behind the key.
- I did an email challenge/response or equivalent and checked the fingerprint.
- I can't be sure if the key-owner has full control over his email account.
- Level 2:
- I didn't meet the owner personally, but checked that the Key/email-address belongs to the owner (by phone for example), OR I trust some signatures on the key enough to trust the key itself.
- I did an email challenge/response or equivalent and checked the fingerprint.
- Level 3:
- I know the key-owner personally (met him) and I know that the User-IDs belong to the key-owner. I know that the key belongs to the key-owner.
- I checked the passport or other equivalent ID of the owner.
- OR
- This is the key of a CA trusted by me.
