OT Outlook Re: gnupg encrypted mail and malware/spam

Per Tunedal pt@radvis.nu
Mon May 12 10:52:02 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

At 09:20 2003-05-12 +0200, you wrote:
 >On Monday 12 May 2003 08:30, you wrote:
 >> At 20:34 2003-05-11 +0200, Ingo Kl=F6cker wrote:

 >>
 >> Yes, Ingo! GPGrelay encrypts attachments when using inlined
 >> encryption! I really like it! A wonderful feature ;-)>
 >
 >Well, that's good for you. ;-) But there is no standard for =
inline
 >encrypted attachments. So that's no problem because there's =
probably
 >not a single native Windows email client which automatically =
decrypts
 >these attachments. Heck, not even PGP/MIME is supported by =
Outlook. So
 >what's the problem anyway? I don't think that an attacker =
will use PGP
 >(be it inline or PGP/MIME) as long as Outlook only supports =
S/MIME
 >encryption natively.
 >
 >Regards,
 >Ingo

I read there was a bug in Outlook that sent mail unecrypted =
though it was
supposed to be encrypted, in some occasions. No warning to =
sender. Classed
as "a medium security issue" by MS. Not fixed yet as far as I =
know.

I believe there is an advantage in open software ...

Per Tunedal

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (MingW32) - GPGrelay v0.92

iD8DBQE+v2DL2Jp9Z++ji2YRAqViAKCnLBJQKBw3+Ayz/VRwbVt5jUBGbwCfSfZG
HmEOvD+pEtAJPRHYyDQNOnQ=3D
=3D1+hj
-----END PGP SIGNATURE-----