/d/OpSec icon

/d/OpSec

16,634 subscribers

Must read: https://anonymousplanet-ng.org/guide.html

Discussion of OpSec, Threat Models, Protection, Assessment & Countermeasures.

Vendors, please use /d/vendor_handbook.

While the focus of this community's OpSec discussions may center around Dark Net (DN) activity, all members of this sub are encouraged to think about, discuss, and share ideas relating to OpSec that extend beyond the bounds of the DN.

What does keysigning policies mean?

by /u/RandomKid 🍼 · 1 votes · 6 days ago

I was adding someone's public key and in the output of gpg was something referring to a link to their website in which something along the lines

signature levels

0: no indication;

1: personal belief but no verification, useful for signing pseudonymous IDs;

2: casual verification;

3: extensive verification.

What is that? It's the first time I hear about such a thing.

Comments (3)
/u/HeadJanitor Moderator · 2 votes · 6 days ago · Link

What you have there is the Certification level and this has to do with Trust Signatures which entail the degree to which you trust someone:

Trust Levels

Unknown

Never

Marginal

Full

Ultimate (Only use with your own keys!)

This is what it means to assign a “certification level” to a signature.

/u/RandomKid 📢 🍼 OP · 1 votes · 5 days ago · Link

Thanks! That was really helpful.

/u/HeadJanitor Moderator · 2 votes · 5 days ago · Link

Anytime. Thank you.