Re: About PGP Signing a File.
- From: John Dangler <jdangler@xxxxxxxxxxxx>
- Date: Sun, 11 Feb 2007 04:39:04 -0500
On Sun, 2007-02-11 at 09:28 +0000, Tony Arnold wrote:
-----BEGIN PGP SIGNED MESSAGE-----I can man gpg for this part...
Hash: SHA1
John,
John Dangler wrote:
On Sun, 2007-02-11 at 09:15 +0000, Tony Arnold wrote:
Matthew Flaschen wrote:So, how can I get a valid signature that I can put in my evolution
Joel Bryan Juliano wrote:Verifying the signature also confirms that the file has not been
Hi,There's no use, unless you're planning on sending the file to someone.
I have a question regarding signing a file or binary, I installed
Seahorse which is really awesome tool! And it has a nautilus-extension
that easily Encrypt and Sign a file or directory by right-clicking the
file. Can someone please tell me the use of signing a binary file or
directory? I know it's important, but I really don't get it.
If you do send it to someone, they can check the signature to verify you
sent it. Emails and most forms of electronic communication can be
easily forged, but signatures can't be.
modified since you signed it but some malicious person. So it acts a bit
like an MD5 checksum with the added benefit that you can check who
signed it.
Regards,
Tony.
emails?
You need to use gpg to generate a key pair, a secret key and the
corresponding public key. gpg keeps these in a 'keyring' for you.
Yes, there is a place to put signatures in mail (it looks as though the
You can then use evolution to sign outgoing messages. It's a while since
I used Evo, but I think you can set it to do this automatically.
preferences can be set to email account specific.
Public, as in, on a public web server somewhere?
You also need to make your public key available as recipients will need
this to verify your signature.
Get someone to _sign_ your key? I'll need to read up on this...
An additional feature of PGP is that keys can be signed themselves.
Typically you get someone who can confirm you are who you say you are to
sign your key. Broadly speaking the more signatures a key has, the
greater the chance of it being trustworthy.
Regards,
Tony.
- --
Tony Arnold, IT Security Coordinator, University of Manchester,
IT Services Division, Kilburn Building, Oxford Road, Manchester M13 9PL.
T: +44 (0)161 275 6093, F: +44 (0)870 136 1004, M: +44 (0)773 330 0039
E: tony.arnold@xxxxxxxxxxxxxxxx, H: http://www.man.ac.uk/Tony.Arnold
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFFzuHDIsyKE/d21hkRAqwTAJ9mVO+NeX4wd3OAkXVrFH8g26pNyQCgyL65
oo+AdGwDCy5nfTmHjuTIIqE=
=eAB4
-----END PGP SIGNATURE-----
--
ubuntu-users mailing list
ubuntu-users@xxxxxxxxxxxxxxxx
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
- Follow-Ups:
- Re: About PGP Signing a File.
- From: Tony Arnold
- Re: About PGP Signing a File.
- From: Mario Vukelic
- Re: About PGP Signing a File.
- References:
- About PGP Signing a File.
- From: Joel Bryan Juliano
- Re: About PGP Signing a File.
- From: Matthew Flaschen
- Re: About PGP Signing a File.
- From: Tony Arnold
- Re: About PGP Signing a File.
- From: John Dangler
- Re: About PGP Signing a File.
- From: Tony Arnold
- About PGP Signing a File.
- Prev by Date: Re: turning off screensaver
- Next by Date: Re: About PGP Signing a File.
- Previous by thread: Re: About PGP Signing a File.
- Next by thread: Re: About PGP Signing a File.
- Index(es):
Relevant Pages
|
