verifying rsa signatures

Peter T. Abplanalp pta@psaconsultants.com
Wed Apr 17 19:05:02 2002


--SLDf9lqlvOQaIe6s
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Apr 17, 2002 at 09:57:53AM -0700, Steve Butler wrote:
> I'd never show my private key.  Note, I did try to import BOTH your public
> and private keys!!  Lucky for you that they are not in the OpenPG format.
> But somebody else may have openssl.  So, you should consider your private
> key compromised at this point.

that isn't true, is it?  you would have to know tha pass phrase and if
it was sufficiently long and random, the private key would do you no
good.

--=20
Peter Abplanalp

Email:   pta@psaconsultants.com
PGP:     pgp.mit.edu

--SLDf9lqlvOQaIe6s
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE8vatnggA8sH0iRXQRAvgjAKCz9wWrR+SC6iWR8LeKafkQkdNPDQCgn68P
8ZMF/1aRzQN0t2xD0dUJdRo=
=AyuU
-----END PGP SIGNATURE-----

--SLDf9lqlvOQaIe6s--