Re: About PGP Signing a File.

---

• From: rpowersau@xxxxxxxxx
• Date: Tue, 13 Feb 2007 19:35:43 +0800

---

On 2/13/07, Matthew Flaschen <matthew.flaschen@xxxxxxxxxx> wrote:

Michael R. Head wrote:

On Mon, 2007-02-12 at 22:13 -0800, John L Fjellstad wrote:

Ouattara Oumar Aziz <wattazoum@xxxxxxxxx> writes:

That's why, when I see some people on some mailing list signing there
mail using PGP I just wonder what they want to prove. We have no way to
check the authority behind that key.

Authority has nothing to do with (unless you know the person). But you
can be sure that the person who claims he wrote an email yesterday is
the same person who wrote the email today if the signature match.

Correction: *reasonably sure*

It's entirely possible that the guy's keys were stolen in the
intervening night.

Also true, but that's what revocation certificates
(http://www.pgp.net/pgpnet/pgp-faq/pgp-faq-key-revocation.html) are for.
Constant vigilance.

Your key is not something physical that you would notice was missing.
It could be hours/days/weeks before you realise. Revocation is not
much use until you are aware the key has been stolen.

Matthew Flaschen


--
ubuntu-users mailing list
ubuntu-users@xxxxxxxxxxxxxxxx
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users

--
Regards,
Russ

--
ubuntu-users mailing list
ubuntu-users@xxxxxxxxxxxxxxxx
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users

---

• References:
  • About PGP Signing a File.
    • From: Joel Bryan Juliano
  • Re: About PGP Signing a File.
    • From: John Dangler
  • Re: About PGP Signing a File.
    • From: Tony Arnold
  • Re: About PGP Signing a File.
    • From: Jeffrey F. Bloss
  • Re: About PGP Signing a File.
    • From: Tony Arnold
  • Re: About PGP Signing a File.
    • From: John L Fjellstad
  • Re: About PGP Signing a File.
    • From: Ouattara Oumar Aziz
  • Re: About PGP Signing a File.
    • From: John L Fjellstad
  • Re: About PGP Signing a File.
    • From: Michael R. Head
  • Re: About PGP Signing a File.
    • From: Matthew Flaschen

• Prev by Date: Re: [CANCELED]Re: vmware-server on Edgy
• Next by Date: Re: Problem burning DVD / Who to assign to in launchpad
• Previous by thread: Re: About PGP Signing a File.
• Next by thread: Re: About PGP Signing a File.
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: About PGP Signing a File. ... Michael R. Head wrote: ... mail using PGP I just wonder what they want to prove. ... Authority has nothing to do with. ... can be sure that the person who claims he wrote an email yesterday is ... (Ubuntu) Re: About PGP Signing a File. ... mail using PGP I just wonder what they want to prove. ... Authority has nothing to do with. ... can be sure that the person who claims he wrote an email yesterday is ... John L. Fjellstad ... (Ubuntu) Re: About PGP Signing a File. ... Ouattara Oumar Aziz writes: ... mail using PGP I just wonder what they want to prove. ... Authority has nothing to do with. ... can be sure that the person who claims he wrote an email yesterday is ... (Ubuntu) Re: Secure email solution ... > without using a public key. ... > watch by a third party Certificate of Authority rather than just me trusting ... > Certificate of Authority? ... PGP does this. ... (alt.computer.security) Re: About PGP Signing a File. ... there mail using PGP I just wonder what they want to prove. ... Authority has nothing to do with. ... If your keys have been compromised a revocation certificate is mostly ... All security mechanisms are vulnerable if you lose the secret. ... (Ubuntu)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)