26 Jul
2015
26 Jul
'15
2:11 p.m.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512
What was knee-jerk about my response?
I found it also unnecessarily sharp, maybe because I assumed no malicious intent and I don't believe malicious actors depend on such 'pre-warmed' key offers anyway.
The relay identity key is sensitive cryptographic material. Sharing it means the private key is compromised
There are certainly different levels of sharing keys. Handing over operations of a relay to a 'trusted' third party might not be equally bad as publishing private keys on the internet or handing them over to the first 'random person' who is asking for them.
-----BEGIN PGP SIGNATURE-----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=AtjZ
-----END PGP SIGNATURE-----