PGP uses a "key server" to distribute and pick up public keys.
If this server is compromised, it's not secure, and therefore, the keys it
contains are not trustworthy.
A SECURE method of key transfer may be as simple as packing a floppy disk
with a key and mailing using (in the USA anyway) "Registered Mail".
John Matteson; Exchange Manager
Geac Corporate Infrastructure Systems and Standards
(404) 239 - 2981
If you think you are experiencing a memory leak, please be aware that memory
leaks may not be what they appear to be. You may discover that a memory leak
is really not a memory leak but a performance enhancement. - Microsoft KB
Article Q268343
-----Original Message-----
From: McKnight, Charles [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 12, 2001 10:22 AM
To: Exchange Discussions
Subject: RE: Encryption
why would you need a secure method of exchanging keys for a Public Key
encryption product like PGP? The entire point of Public key encryption is
that it doesn't matter who has your public key as they can only verify
signatures or encrypt something that then only you could decrypt with your
private key.. if you are using symmetric key encryption then the statement
about secure key transfer is valid but with PGP and other public key
encryption schemes just use the public key servers or internally setup a
keyserver for your organization to transfer keys... as to how well PGP works
with outlook/exchange it is workable but does seem to crash occasionally for
us here.. it does work well as long as it is running and is very easy to use
assuming you use the keyservers as I mentioned above..
Charles
Charles F. McKnight
PC/Lan Specialist
Mercy Health System - NWA
[EMAIL PROTECTED]
> -----Original Message-----
> From: John Matteson [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 11, 2001 6:47 PM
> To: Exchange Discussions
> Subject: RE: Encryption
>
>
> PGP has a tie into Outlook. However, encryption products usually don't
> interoperate well. You also have to have a secure method of exchanging
> encryption keys.
>
> You may want to investigate transport layer encryption rather than
> encryption of individual mail messages. This is more
> interoperative than
> message/certificate encryption.
>
> John Matteson; Exchange Manager
> Geac Corporate Infrastructure Systems and Standards
> (404) 239 - 2981
> If you continue in your misguided attempt to introduce logic
> and reason into
> a Usenet discussion, men in sunglasses and black suits will
> be forced to
> land their silenced helicopter on your lawn and explain to
> you the error of
> your ways. - Chris Suslowicz
>
>
>
> -----Original Message-----
> From: Mark Peoples [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 11, 2001 7:21 PM
> To: Exchange Discussions
> Subject: Encryption
>
>
> Hi,
> I have checked the FAQ and have not found any suggestions...
> so I will put
> it to the experts.
>
> Does anyone have a preferred product or solution for e-mail
> encryption?
> Management here are looking at installing PGP and are also
> looking at a
> Verisign product. Does anyone have any good / bad experience
> with either of
> these products or any others?
>
> Previously I have had a few bad experiences with PGP software
> so I may be a
> bitbiased against it - hence I am looking to see what the
> general consensus
> is...
>
> Thanks in advance,
> MP
>
> _________________________________________________________________
> List posting FAQ: http://www.swinc.com/resource/exch_faq.htm
> Archives: http://www.swynk.com/sitesearch/search.asp
> To unsubscribe: mailto:[EMAIL PROTECTED]
> Exchange List admin: [EMAIL PROTECTED]
>
> _________________________________________________________________
> List posting FAQ: http://www.swinc.com/resource/exch_faq.htm
> Archives: http://www.swynk.com/sitesearch/search.asp
> To unsubscribe: mailto:[EMAIL PROTECTED]
> Exchange List admin: [EMAIL PROTECTED]
>
_________________________________________________________________
List posting FAQ: http://www.swinc.com/resource/exch_faq.htm
Archives: http://www.swynk.com/sitesearch/search.asp
To unsubscribe: mailto:[EMAIL PROTECTED]
Exchange List admin: [EMAIL PROTECTED]
_________________________________________________________________
List posting FAQ: http://www.swinc.com/resource/exch_faq.htm
Archives: http://www.swynk.com/sitesearch/search.asp
To unsubscribe: mailto:[EMAIL PROTECTED]
Exchange List admin: [EMAIL PROTECTED]
