
Karl Fogel at
.@SpiderOak crawled
GPG public key WoT & sent me unsolicited, encrypted solicitation
for commercial encryption services. Spam? Not spam?

I told them I'd be interested in evaluating it if it were open source (not merely visible-source). http://risacher.github.io/DoD-OSS-FAQ/#link6