[OTR-users] Opinions on proposed "unknown fingerprint" behaviour?
Greg Troxel
gdt at ir.bbn.com
Mon Jun 13 09:55:55 EDT 2005
Ian Goldberg <ian at cypherpunks.ca> writes:
> On Thu, Jun 02, 2005 at 08:41:24AM -0400, Greg Troxel wrote:
> > New fingerprints would cause gaim to automatically go from red to
> > yellow. It will display a dialog saying that a new fingerprint was
> > presented for the given user.
> >
> > I think you mean 'presentation of a new OTR signing key, followed by
> > key agreement authenticated by that (untrustworthy) key'. Pedantic,
> > perhaps, but this is confusing enough.
>
> I'm not sure I see your distinction. The Key Exchange Message packet
> contains *both* the presentation of the DSA key *and* the DH key
> agreement, sign with the DSA key.
My point was to make the signing key be the primary entity, rather
than 'fingerprint', which is just a hash of the signing key (and an
overused word IMHO).
--
Greg Troxel <gdt at ir.bbn.com>
More information about the OTR-users
mailing list