On Tue, 2007-04-10 at 23:27 +0200, Magnus Holmgren wrote: >
> And even if you can't trust that I am me, you can still be confident
> that all
> messages signed with this key come from the same person.
That's another (and common) fallacy. That's only the case if the holder
of the key can be trusted to keep the secret key confidential. When the
holder of the key can't be trusted to his identity, that can't be
trusted either.
