On Tuesday, June 12, 2001 7:25 AM, Michael Falzon
[SMTP:[EMAIL PROTECTED]] wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> error: failed dependencies
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
>
> iQA/AwUBOyW1nx+m/6t6W/SaEQJTagCg+2PICONXT2uLAeTNmqfAsytAJZkAn3aB
> m51HjlIJk1XDO16Wn2NiNYot
> =WZ/w
> -----END PGP SIGNATURE-----
>
Michael is using PGP 7xx. This is a fundamentally UNTRUSTWORTHY
implementation of PGP because NSA, who now own PGP, decided not to release
the source code. It is a fundamental maxim of computer security that there
is no security through obscurity. This was one of the reasons that Phil
Zimmerman, who invented PGP, left them - although he says that 7.0.3. is
secure and was finished under his watch, we have only his word for it
whereas if the source was available we could (if we were so minded) walk
through the code and satisfy ourselves as to its integrity.
For non-commercial use, there are 6xx releases of PGP with published
source; or there's GPG.
