On Thu, 07 Aug 2008 12:41:53 EDT, der Mouse said: > > The *real* problem is that digital signatures for E-mail work in > > *exactly the same way* and provide *the same protection* as SSL does > > for the Web. > > > Yes, that's the problem, not the solution statement. > > It's also wrong.
You then point out minor differences that totally gloss over the real issue: That the same people who don't understand that the little padlock doesn't guarantee that you're talking to the website you think you are, will also fail to understand that the little e-mail padlock doesn't guarantee that the e-mail is from who you think it is. As I said - it provides the same protection, which isn't what the average user *thinks* the protection is...
pgpkJghFMFVYo.pgp
Description: PGP signature
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
