Derek D. Martin [EMAIL PROTECTED] wrote on 25/01/2002 (09:25) :
Sure, but if you actually cared, you could get my key and try to
verify it. Presumably, if you cared, you'd already have it, since my
key ID is in my sig, and since you can configure gpg/mutt to get keys
from a keyserver
I have just installed gnupg on my system and set it up. I wonder how
ever why people sign their mails to mailinglists? Perhaps there is
something wrong in my setup because I keep getting:
[-- PGP output follows (current time: tor 24-01-2002 11:56:40 CET) --]
gpg: Signature made ons
Preben --
...and then Preben Randhol said...
%
% I have just installed gnupg on my system and set it up. I wonder how
% ever why people sign their mails to mailinglists? Perhaps there is
This has come up at least twice, in great detail, in recent memory.
Check the archives for more so that we
David T-G [EMAIL PROTECTED] wrote on 24/01/2002 (12:18) :
This has come up at least twice, in great detail, in recent memory.
Check the archives for more so that we don't have to get into it again :-)
Ah I found it in the archive. Sorry should have searched better. And I
also found a way to
Preben --
...and then Preben Randhol said...
%
% David T-G [EMAIL PROTECTED] wrote on 24/01/2002 (12:18) :
%
% This has come up at least twice, in great detail, in recent memory.
% Check the archives for more so that we don't have to get into it again :-)
%
% Ah I found it in the archive.
David T-G [EMAIL PROTECTED] wrote on 24/01/2002 (12:38) :
% also found a way to get rid of this problem with signed posts (which I
% think is unnecessary for ordinary posts).
Without rising to the bait of your latter statement, what did you find as
mentioned in your former statement?
No it
Preben --
...and then Preben Randhol said...
%
% David T-G [EMAIL PROTECTED] wrote on 24/01/2002 (12:38) :
% % also found a way to get rid of this problem with signed posts (which I
% % think is unnecessary for ordinary posts).
%
% Without rising to the bait of your latter statement, what
David T-G [EMAIL PROTECTED] wrote on 24/01/2002 (12:54) :
Well, once you do, I'm interested in what you find. I understand the
reasoning of the don't sign mailing list posts side and would like to
see things that make their lives easier.
If you don't want to be bothered, then please give me
At some point hitherto, Preben Randhol hath spake thusly:
David T-G [EMAIL PROTECTED] wrote on 24/01/2002 (12:18) :
This has come up at least twice, in great detail, in recent memory.
Check the archives for more so that we don't have to get into it again :-)
Ah I found it in the
At some point hitherto, Preven Randhol hath spake thusly:
At some point hitherto, Preben Randhol hath spake thusly:
also found a way to get rid of this problem with signed posts (which I
think is unnecessary for ordinary posts).
Signing on mailing lists is used to prevent this problem
Drekka mer D. Martin [EMAIL PROTECTED] wrote on 24/01/2002 (19:34) :
Sorry I misspelled your name. :) The point is, it's very, very easy
to forge mail to mailing lists (or not to mailing lists, for that
matter). It's much harder to forge a valid, signed mail, because you
need access to the
So sprach »Preben Randhol« am 2002-01-24 um 11:59:01 +0100 :
I have just installed gnupg on my system and set it up. I wonder how
ever why people sign their mails to mailinglists? Perhaps there is
Unknown. It doesn't add any security but just wastes bandwith.
Alexander Skwar
--
How to
Preben Randhol wrote:
[i'll respond to both posts since i held my tongue on the first for a
while]
Drekka mer D. Martin [EMAIL PROTECTED] wrote on 24/01/2002
(19:34) :
The point is, it's very, very easy to forge mail to mailing lists
(or not to mailing lists, for that matter). It's much
also, since most people on the list don't know you in real life, all
they know is that you're the same person who has always been writing
email under that name and with that PGP key. there's no real advantage
to doing this IMHO in most cases.
I disagree -- if Thomas didn't sign all his
At some point hitherto, Preben Randhol hath spake thusly:
matter). It's much harder to forge a valid, signed mail, because you
need access to the victim's PGP _private_ key, and their passphrase.
Yes but who knows? I just get information from gnupg that it cannot
verify the signed posts
On 2002.01.24, in [EMAIL PROTECTED],
Mike Schiraldi [EMAIL PROTECTED] wrote:
also, since most people on the list don't know you in real life, all
they know is that you're the same person who has always been writing
email under that name and with that PGP key. there's no real
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
* and then Will Yardley blurted
i agree with recent posts about this list. this used to be one of the
lists i enjoyed reading most since most people had good ettiquette
(unlike many other mailing lists i'm on) and since it had a minimum of
17 matches
Mail list logo
