decrypt is not de-encrypt and then verify ?
Matthias Odisio
odisio@icp.inpg.fr
Fri Jan 10 08:54:03 2003
On Wed, 8 Jan 2003, Werner Koch wrote:
> No. There are 3 approaches to send an encrypted an encrypted and
> signed message:
>
> 1. Classic PGP armor (gpg -sea)
> 2. PGP/MIME with combined encryptedn and signature.
> 3. Regular PGP/MIME where the signature is encapsulated into a MIME
> object and that MIME object is than encrypted and encapsulated into
> another MIME object.
>
> 2 and 3 are suggested; 3 has the advantage that it fits better with
> the MIME framework and that it allows to strip the encryption header.
> See RFC3156 for details. Most Windows mailers don't support 2 and 3,
> though.
>
> What you did is similar to 3 but without using the correct MIME
> syntax. MIME has the advantage that the sematics of the encrypted
> data is known, and thus the mailer can do the Right Thing.
>
> > considered above, the mailer seems to add these 3 "garbage" lines :
> > ***
> > Content-Type: text/plain; charset=ISO-8859-1
> > Content-Transfer-Encoding: 8bit
>
> That's no garbage, but meta information about the message; see rfc2882.
>
>
> Shalom-Salam,
>
> Werner
Thank you for that fine answer !
Matthias