[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Revealing individual messages.

To: [email protected]
Subject: Re: Revealing individual messages.
From: [email protected] (Anonymous)
Date: Sun, 19 Oct 1997 23:27:30 +0200 (MET DST)
Organization: Replay and Company UnLimited
Sender: [email protected]

Bill Stewart wrote:

> If you're concerned about Bad Cops planting forged messages on people,
> this won't help - it's easy for them to forge unsigned information also.
> After all, the PGP source code is open, so Bad Cops can add code to
> set the timestamp/sender/etc themselves.  Or they can ignore code,
> and just set their system clock appropriately.

  BC's can also plant secret keys on your machine, along with messages
forged using those keys.
  It is a good idea to keep badly forged messages on your machine, as 
well as badly forged keys. There are many ways to manipulate files and
emails so that discrepancies exist. e.g. - messages with a time-stamp
later than the file date; replies with an earlier time-stamp than the
original message; changing fingerprint on the same key.

Prev by Date: Re: Revealing individual messages.
Next by Date: Re: Security flaws introduced by "other readers" in CMR
Prev by thread: Re: Revealing individual messages.
Next by thread: A Math problem related to cryptography
Index(es):
- Date
- Thread