Comment gpg fingerprint (Score 1) 359
I'm trying to establish a chain-of-trust to the replicant project's files.
You have signed their key fingerprint, so if I can get a reliable .
I have 6781 9B34 3B2A B70D ED93 2087 2C64 64AF 2A8E 4C02 as YOUR (new) key fingerprint.
But MITM attacks could, in principle, have corrupted my downloading of that and/or could corrupt any handshake process I'm familiar with that we could reasonably accomplish over a Q&A over slashdot.
I'm in the silicon valley area. Is there any easy way to get in touch with you to confirm that fingerprint or obtain the correct one? Will you be appearing in person some time in the near future? Has it been painted as graffiti or a sign in a known place (and check periodically to be sure it's not modified)? Is there someone you know who is in the Silicon Valley area who is a public enough person to identify and who has your fingerprint and is willing to confirm it? Etc.