Standard weakness: surreptitious forwarding

[David T-G]

--stFzI3XAseUQ09UW
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Johann --

=2E..and then Johann Thomas said...
%=20
% 0. Source of information
% I was pointed to this information by subscribers to the enigmail mailing=
=20
% list (http://enigmail.mozdev.org/).

Good to know.


%=20
=2E..
% Links:
% *Defective Sign & Encrypt in S/MIME, **PKCS#7, MOSS, PEM, PGP, and XML:*=
=20
% http://world.std.com/~dtd/sign_encrypt/sign_encrypt7.html

Thanks for bringing this up here; it's good to know.

Please see this mailing list's archives for fairly extensive discussion
of this paper, and the weaknesses it outlines, earlier this year.


HTH & HAND

:-D
--=20
David T-G                      * It's easier to fight for one's principles
(play) davidtg@justpickone.org * than to live up to them. -- fortune cookie
(work) davidtgwork@justpickone.org
http://www.justpickone.org/davidtg/    Shpx gur Pbzzhavpngvbaf Qrprapl Npg!


--stFzI3XAseUQ09UW
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQE8/7frGb7uCXufRwARAmBkAJ4960HD2VzhzlZoop05PrucJRfszwCgxWdX
X3Cct+W/hMvojTiTiJNIrI8=
=ZZU2
-----END PGP SIGNATURE-----

--stFzI3XAseUQ09UW--