-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Hi,
Okay, so I will manage both (a way who use gnupg on the server, on another way with FireGPG), and add big warning with the first option :).
Regards,
(Ps: this time I will use the next-devel version ;) )
On Thu, 17 Jan 2008 20:22:41 +0100, till klimpong@gmail.com wrote:
Dear Maximilien,
On Jan 17, 2008 4:17 PM, Jason Fesler jfesler@gigo.com wrote:
(...) Oh well, off my soap box. Implement what you want. I just hope any README or whatever includes some paranoia.
+1
I'm not strictly against this feature but then again I wouldn't upload my key to *any* provider.
Think about the general risk. I am not saying that someone will spy on you and steal your key but what if they get hacked etc.. There are multiple scenarios that come to mind. I guess it's fine to have this feature when you are in total control of your environment and don't mind the risk.
Anyway, having said that - and since no one else said, "OH I AM WORKING ON THIS", go knock yourself out. ;-)
Till _______________________________________________ List info: http://lists.roundcube.net/dev/