can't verify my own signature
kurt c
kurtc1972 at gmail.com
Wed Jul 23 01:24:20 CEST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
John Clizbe wrote:
> kurt c wrote:
>> Well, John, why is it then that when I sent an encrypted and signed
>> message to this other Gmail account of mine without Enigmail, and
>> clicked on Privacy Tray's "clickboard" -> "decrypt/verify", the message
>> is both decrypted and verified as with good signature? If the message is
>> altered through the webmail system so that its signature can't be
>> verified, why is it that when it's encrypted it can both be decrypted
>> and verified?
>
> Please address messages to the list, not a person.
>
> Short Answer: The text manipulations performed by Web mail user agents which
> break inline signed OpenPGP messages are not possible with encrypted messages.
>
> Trying to compare what happens to encrypted (& signed) messages versus inlined
> signed messages in transit is somewhat of an 'apples to oranges' proposition.
>
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users
Thanks John, you make my learning process so much easier.
Lawrence
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkiGbCQACgkQE7PX/Y51jV/2tQCbBACyrroEriqla0K2jbw7Lkez
9iYAn3+gCaYGPo4f9tB5aXEldmdGw0jZ
=Jobf
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list