Sorry to be so far off list, but
In message Mon, 25 Oct 93 17:15:20 -0400, mjr @
> This is what PEM and PGP, etc are supposed to give you.
> The issue isn't one of mechanism, it's one of policy.
Agreed. If you look at the usual PGP keyservers, you'll see a number of
org (or whatever the CERT address is) that were in heavy use in
the fall of 1992. Rumour has it that folks (both CERT and users) were very
happy to use PGP rather than the cumbersome identification process that
they needed in pre-Public Key days.
But once PKP/RSA started rattling swords about the legality of PGP in the
US, the policy at CERT changed. I received a couple of obnoxious messages to
stop distributing keys of CERT staff. So I stopped, 'cause they weren't my
keys. But they sure were public keys, and they still are floating arroung
Perhaps once ViaCrypt starts selling their legal version of PGP all this
paranoia can rest. I hope so. (I don't have any faith that PEM will ever see
light of day, given the Clinton Administration's love of the
And now back to your regular programming...
Pat Farrell Grad Student pfarrell @
Department of Computer Science George Mason University, Fairfax, VA
Public key availble via finger #include <standard.disclaimer>