(no title)

The point of Web of Trust is to only trust keys that other people you know have also signed. Everything else is garbage until proven otherwise.

Key servers are untrustworthy because anyone can upload random shit to them.

Trying to shift WoT to a third party is trying to get something for free that doesn't emphasize solving the problem: getting everyone you know signing keys of only other people they know.

https://www.kernel.org/signature.html#kernel-org-web-of-trus...