On 8/04/2015 12:04 am, MFPA wrote: > On Tuesday 7 April 2015 at 2:14:55 PM, in > <mid:[email protected]>, Daniel Kahn Gillmor > wrote: > >> We know how to structure a proper name-addr and an addr-spec, and >> it's not difficult. If you want an e-mail address to be >> recognizable to automated tools, you should structure it in a >> recognizable way. > >> The above UID is simply a mistake, and i don't think >> GnuPG should try to accomodate it. > > Fair enough. That we should try to accommodate:- > > [email protected] > > but not:- > > Test20150407 [email protected] > > actually makes sense to me. I structured my example UID incorrectly.
Yeah, this is fair because the first one is accepted by SMTP in the mail from and rcpt to commands, but the second one wouldn't. bash4-4.3$ telnet seditious 25 Trying 172.17.23.9... Connected to seditious.adversary.org. Escape character is '^]'. 220 seditious.adversary.org ESMTP Postfix helo me 250 seditious.adversary.org mail from: [email protected] 250 2.1.0 Ok rcpt to: [email protected] 250 2.1.5 Ok data 354 End data with <CR><LF>.<CR><LF> From: Bazza <[email protected]> To: Benny <[email protected]> Subject: The Jets Yo dude, we need those jets! . 250 2.0.0 Ok: queued as E654111C0515 quit 221 2.0.0 Bye Connection closed by foreign host. Compare that to this: Trying 172.17.23.9... Connected to seditious.adversary.org. Escape character is '^]'. 220 seditious.adversary.org ESMTP Postfix helo foo 250 seditious.adversary.org mail from: Bazza [email protected] 555 5.5.4 Unsupported option: [email protected] quit 221 2.0.0 Bye Connection closed by foreign host. The MUA uses the brackets to work out which bits to use in those two commands. Once the data command has been delivered you can put in whatever you like (hence mail spoofing and spam), but before the data command is delivered the format is explicit. That said, if just the brackets are included it will still behave, in case the MUA extracts them from the From and To fields along with the address: Connected to seditious.adversary.org. Escape character is '^]'. 220 seditious.adversary.org ESMTP Postfix helo snafu 250 seditious.adversary.org mail from: <[email protected]> 250 2.1.0 Ok rcpt to: <[email protected]> 250 2.1.5 Ok data 354 End data with <CR><LF>.<CR><LF> From: Bazza <[email protected]> To: Benny <[email protected]> Subject: Re: The Jets What do you mean you don't believe it was me without a GPG signature? My National Security Advisor said that was bad and the NSA had to tell me what to do. . 250 2.0.0 Ok: queued as 3057A11C0515 quit 221 2.0.0 Bye Connection closed by foreign host. Regards, Ben P.S. The Jets are gone. ;)
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list [email protected] http://lists.gnupg.org/mailman/listinfo/gnupg-users
