[Enigmail] New to Enigmail and having a question about the validity of signatures

[Olav Seyfarth]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Luke,

> How are you? This is my first day using Enigmail.
> I discovered that using Enigmail isn't as hard as I thought!

Fine, thanks :-) Welcome abroad! That's nice to hear.

This is a List on Enigmail. Your questions are more general OpenPGP ones.
You better place them on Yahoos PGP Basics group or the GnuPG user list.

> I have been using Ciphire for a while but unfortunately it was terminated
> a month ago.

I think they had a good technology but no luck with partners and a hardly
noticable marketing.

> There doesn't seem to be a central Certificate Authority for validating
> the public keys.

No the whole idea about PGP is to not need a central authority (see crypto
and key escrow discussion).

> How do I know if I can trust the signature from a particular address?

Short answer: You have to check yourself. That is done using Fingerprints
that are transmitted personally or using a different media. But there are
mechanisms to pass on trust and even authorities that sign OpenPGP keys.
For the gory details of that, please address to one of the groups mentioned
above.

Thanks and good luck,
Olav

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (MingW32)
Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard
Comment: Weitere Informationen: http://privat.seyfarth.de/olav/

iJwEAQECAAYFAkfYEgQACgkQ/dJ0ek5GOmrlcgP+PNDDtklCFbNbXnv0es1zPiFm
mAg+afowFM4yVOSI0JV38+fLnsFUTusKMzLC1WMBFeh2KvOXZHa/qDOjLHvVWk2S
uOuaOFmFi/zfkaAhXZtoD61ue04EHFbs1IwVLTHQeeccXsY35y7AMcazEwKoIKYJ
C9weLHc97dK2ylnXKBg=
=94rQ
-----END PGP SIGNATURE-----