explain nrsign & lsign?
Robert J. Hansen
rjh at sixdemonbag.org
Mon Jan 29 01:37:20 CET 2007
-----BEGIN PGP SIGNED MESSAGE-----
> There is somewhat constant debate over the best method. Many believe
> that Email addresses are 'harvested' from the Servers by bots
> intent on
> increasing the Spammers database.
For whatever it's worth, I consider this one to be very strongly
Consider the address kc0sje @ myemaildomain. It's not exactly one
that would be picked at random. The only published way to find that
address is to enter my ham radio station ID in at the American Radio
Relay League's web page and find "kc0sje @ myemaildomain" as my
contact info--and it seems unlikely spammers would harvest from the
That email address was up on the ARRL's page for a few months before
I added it to one of my keys. In under a week, I started getting
spams to that email address.
There are two obvious ways I can see spammers picking it up. Either
(1) they've got a copy of all American amateur radio station IDs and
are polling the ARRL's information, one record at a time, to compile
them, or (2) they're harvesting addresses off keyservers. Of the
two, #2 seems far, far more likely.
> Many others argue that they haven't been affected by /increased/
> Spam and
> not publishing to the Servers negates the ability to Verify a Sig
> from a
> Key not currently existing on the recipients Keyring.
I agree to this one, too.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (Darwin)
-----END PGP SIGNATURE-----
More information about the Gnupg-users