Thursday, May 10, 2001, 8:13:15 PM, Mike Totman wrote:
> Thursday, May 10, 2001, 10:42:54 AM, you wrote:
>> Thursday, May 10, 2001, 12:25:32 PM, David Elliott wrote:
>>> -----BEGIN PGP SIGNED MESSAGE-----
>>> -----END PGP SIGNATURE-----
>> I want to know what good does all this PGP signing do? I have
>> checked the patterns from a few e-mail messages sent by the same
>> person and the above signature is never the same... then how can
>> I tell that that's not an impersonator ?
> You have to use the PGP plugins to verify the signature. Each signature
> is unique to the message (it is based on it's contents) and the sender.
> The signature allows you to verify that:
> 1) the message actually came from the sender
> 2) the message hasn't been altered.
> If you have PGP/OpenPGP and have it set up in TB!, then you should be
> able to have the signature checked automatically. Also, you can
> configure TB! to add this signature to each of your outgoing messages,
> which is what these people have done.
Ok, now I begin to understand, so I would need David's public
key added to my key manager in order to verify that that's
really a message from him. The only way to get this key is to
get it from him (for example) in a file and import it to my key
manager data base, otherwise I cannot check the sig, it turns out
invalid.
Am I on the right track here ?
About that pattern matching stuff I said, well I should have
known better, that was lame, shows what a tired guy I am :)
--
If Bill Gates had a dime for every time a Windows box crashed...
...Oh wait, he already does.
--
______________________________________________________
Archives : <http://tbudl.thebat.dutaint.com>
Moderators : <mailto:[EMAIL PROTECTED]>
TBTech List: <mailto:[EMAIL PROTECTED]>
Unsubscribe: <mailto:[EMAIL PROTECTED]>
You are subscribed as : [email protected]
