<h3><em>Important:</em> check people's identification before signing their keys</h3>
<p>Before signing a real person's key, always make sure it actually belongs to them, and that they are who they say they are. Ask them to show you their ID (unless you trust them very highly) and their public key fingerprint -- not just the shorter public key ID, which could refer to another key as well. In Enigmail, answer honestly in the window that pops up and asks "How carefully have you verified that the key you are about to sign actually belongs to the person(s) named above?".</p>
</div><!-- End .main -->
-
<!-- ~~~~~~~~~ Troubleshooting ~~~~~~~~~ -->
<div class="troubleshooting">
<h4>Advanced</h4>
<dl>
<dt>Encrypt messages from the command line</dt>
-
- </dl> <dd>Unfortunately, trust does not spread between users the way many people think <a href="http://fennetic.net/irc/finney.org/~hal/web_of_trust.html">many people think</a>. One of best ways to strengthen the GnuPG community is to properly <a href="https://www.gnupg.org/gph/en/manual/x334.html">understand</a> the web of trust and to carefully sign as many people's keys as <a href="http://www.cryptnet.net/fdp/crypto/keysigning_party/en/keysigning_party.html">circumstances</a> permit.</dd>
-
+ <dd>You can also encrypt and decrypt messages and files form the <a href="https://www.gnupg.org/gph/en/manual/x110.html">command line</a>, if that's your preference.</dd>
+ </dl>
</div><!-- /.troubleshooting -->
+
</div><!-- End #step-sign_real_keys .step-->
projects / enc-live.git / commitdiff