On Wed, 2 Mar 2005 12:37:41 +0100 Brad Knowles <brad@stop.mail-abuse.org> wrote:

True. A session key would be encrypted to each key id, so the key ids would be visible. However, subscriber information is not too hard to get from Mailman even when it's supposedly limited to being available only to the admin, so I think there may be bigger fish to fry elsewhere.

There's also the difference between using a key for a list subscription which is publicly distributed on key servers, and a special-purpose key that you don't otherwise distribute and use for smaller more privacy critical cases.

-- J C Lawrence ---------(*) Satan, oscillate my metallic sonatas. claw@kanga.nu He lived as a devil, eh? http://www.kanga.nu/~claw/ Evil is a name of a foeman, as I live.