[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Hazards of encouraging forged dig sigs



-----BEGIN PGP SIGNED MESSAGE-----

On Wed, 30 Nov 1994, L. McCarthy wrote:

>Encouraging cryptographically
>valid signatures was the first suggestion I'd seen in this entire debate
>which seemed to promise tangible benefits; encouraging cryptographically
>invalid signatures is the first notion which appears to offer tangible
>detriment.

As one of the few people who verify all PGP signatures for which I have 
keys, I have to say that encouraging people to put garbage in PGP 
signature blocks would be extremely annoying. Either I'll have to go back 
to using a non-PGP-aware mail reader, or fix it to do something sensible 
with such messages. While I'm going to have to do the latter at some point
anyway, there are much more useful things that I could be doing...

			Mark


-----BEGIN PGP SIGNATURE-----
Version: 2.6

iQCVAgUBLt3Kw6FlWzerDvH1AQEyTgP/bPz1NLXeicLD81Ijj8S6/m+D3Tmb363Q
+Xj5MDsW+xBNC+p8ViKzZ+zvjZg5Cr6MsQ24TWT3n7DId7l2pAWyAH5JWf7OuW9u
xvrfMfFas04RuOE8mjO7Gcp9E3eFNKz9MNQGlG7YwkPLX/twbF7+gX1RWkPGV2JE
+b+KOjVkQbs=
=lLbP
-----END PGP SIGNATURE-----