Hi Allan,
Allan Irving allanirving@allanirving.co.uk schrieb:
Okay, so I've managed to set up PGP as per the documentation.
My question is how does signing work and when someone signs my key, does it go like this:
- I send them my public key,
- They sign it.
Nobody should sign without checking your identity. People not knowing you will normally want to meet you in person.
- They send me back the exported signed key, which now has their
signature.
It's legitimate the other party uploads the key with their signature to a key server.
Best wishes Michael