From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <david@tethera.net>
Received: from localhost (localhost [127.0.0.1])
 by arlo.cworth.org (Postfix) with ESMTP id 358C16DE0C67
 for <notmuch@notmuchmail.org>; Fri,  8 Dec 2017 18:26:50 -0800 (PST)
X-Virus-Scanned: Debian amavisd-new at cworth.org
X-Spam-Flag: NO
X-Spam-Score: 0
X-Spam-Level: 
X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[AWL=0.011,
 SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=disabled
Received: from arlo.cworth.org ([127.0.0.1])
 by localhost (arlo.cworth.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id f2Nh8moBdyzU for <notmuch@notmuchmail.org>;
 Fri,  8 Dec 2017 18:26:49 -0800 (PST)
Received: from fethera.tethera.net (fethera.tethera.net [198.245.60.197])
 by arlo.cworth.org (Postfix) with ESMTPS id 345F36DE0C64
 for <notmuch@notmuchmail.org>; Fri,  8 Dec 2017 18:26:49 -0800 (PST)
Received: from remotemail by fethera.tethera.net with local (Exim 4.89)
 (envelope-from <david@tethera.net>)
 id 1eNUqk-0000Mt-JU; Fri, 08 Dec 2017 21:26:46 -0500
Received: (nullmailer pid 20793 invoked by uid 1000);
 Sat, 09 Dec 2017 02:26:45 -0000
From: David Bremner <david@tethera.net>
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>,
 Notmuch Mail <notmuch@notmuchmail.org>
Subject: Re: [PATCH v3] crypto: signature verification reports valid User IDs
In-Reply-To: <20171208200946.18135-2-dkg@fifthhorseman.net>
References: <20171208185529.4178-1-dkg@fifthhorseman.net>
 <20171208200946.18135-1-dkg@fifthhorseman.net>
 <20171208200946.18135-2-dkg@fifthhorseman.net>
Date: Fri, 08 Dec 2017 22:26:45 -0400
Message-ID: <87vahg1vru.fsf@tethera.net>
MIME-Version: 1.0
Content-Type: text/plain
X-BeenThere: notmuch@notmuchmail.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Use and development of the notmuch mail system."
 <notmuch.notmuchmail.org>
List-Unsubscribe: <https://notmuchmail.org/mailman/options/notmuch>,
 <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
List-Archive: <http://notmuchmail.org/pipermail/notmuch/>
List-Post: <mailto:notmuch@notmuchmail.org>
List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
List-Subscribe: <https://notmuchmail.org/mailman/listinfo/notmuch>,
 <mailto:notmuch-request@notmuchmail.org?subject=subscribe>
X-List-Received-Date: Sat, 09 Dec 2017 02:26:50 -0000

Daniel Kahn Gillmor <dkg@fifthhorseman.net> writes:

> When i'm trying to understand a message signature, i care that i know
> who it came from (the "validity" of the identity associated with the
> key), *not* whether i'm willing to accept the keyholder's other
> identity assertions (the "trust" associated with the certificate).
>
pushed to release and master