-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, Oct 15, 2001 at 04:27:33PM +0100, [Segmen](dontpanic999at_private) wrote: > It occurred to me today what a bad idea the Comment Field is in PGP signed > messages. Altering the Comment filed does not affect the validity of the > signature, but to the non experienced PGP/GPG user it certainly appears to > be part of the message. <snip> It is a minimal concern. Ben raised a valid point for those using plugins and/or automatic processing. For those who use plaintext e-Mail only, they are frequently intelligent enough to realize the horrid syntax issues. Regardless, it is fairly evident upon reading. Those who would fall for it would likely not verify the PGP signature in the first place, which would leave them in a bad situation regardless. Regards, - -- \ | \ / White Vampire\Rem | http://gammaforce.org/ \|\| \/ whitevampireat_private | http://gammagear.com/ "Silly hacker, root is for administrators." | http://webfringe.com/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.5 (GNU/Linux) iD8DBQE7y0dT3+rxmnEDyl8RAleIAKDHOhG1DkDBwjzcqtQvyFg3qZjdlwCaAqJ+ SoNXPHSJA1IzLoFFYUY7prg= =I0jQ -----END PGP SIGNATURE-----
This archive was generated by hypermail 2b30 : Mon Oct 15 2001 - 23:28:41 PDT