question about verifying a vendor by known pgp key

I've found a vendor (tomorrowman, on agora to anyone interested) using his known pgp key, but he requires FE to everyone, as he has for a while now after BMR had their first problems arise. My question is, if the vendor requires FE on all orders, could the person still be a scammer that just copied and pasted the real vendors public pgp key into their profile, but doesn't give a shit since obviously he won't need to ever actually decrypt your address and you already gave him your money? Sorry if this is a stupid question.


Comments


[1 Points] None:

Yes, I think it's definitely technically possible.

I would just send him an encrypted message and try to get him to respond, that way you know. Don't just place an order and FE, ask him a relevant question. If he ignores you, then I'd be suspicious.


[1 Points] rayne117:

See if you can check their public PGP key through the link on this post: http://www.reddit.com/r/DarkNetMarkets/comments/1tkzna/all_markets_vendor_directory_use_it_to_find_your/


[1 Points] Thereisnofork420:

Can you let us know if you verify him?


[1 Points] dapperheroin:

Of course, now I can't get Agora to work...


[1 Points] owockEznan:

If a vendor really wanted to proved their identity, all it would take would be to clearsign their profile with a date in it to prove it wasn't just a copy-pasta from another site. You would then get no questions about 'are you the real John Galt?'


[1 Points] Loliita:

I sent a vender an encrypted message with his old pgp and asked him to respond with a passphrase I mentioned in the message.

He responded with the passphrase and said no worries on double checking and verifying.

I should add that I was nice about the request in my message and said I was just making sure he was who he said. And you can never be too careful.