this post was submitted on 06 Apr 2024
11 points (92.3% liked)

Arch Linux

7781 readers
14 users here now

The beloved lightweight distro

founded 4 years ago
MODERATORS
 

I was creating a new key for pass when I noticed a random expired GPG key assigned to a certain "Roderick van Domburg" in my list of keys. I don't know any Rodericks, and this laptop has been whipped clean.

Should I be concerned? How could this even happen???

you are viewing a single comment's thread
view the rest of the comments
[–] tal@lemmy.today 3 points 7 months ago* (last edited 7 months ago)

And the keyring was originally designed to hold all kinds of (public, not private) keys other then one's own to build out the web of trust, so the intended mode of operation was to have other public keys in there. In practice, I think that most people just have their own keys, though.

Never quite reached the dream of a distributed, verified network.