recover private key
faramir.cl at gmail.com
Tue Jan 13 11:31:13 CET 2009
-----BEGIN PGP SIGNED MESSAGE-----
> And by the way... why do you all sign your messages here? I'm not sure i
> have understood the signing idea completely? it is to make sure that the
> reader knows the sender is the person he/she says he/she is!? right!?
Sorry, I didn't fully answered your question... The purpose of
signatures is to prove messages have not been tampered in transit from
the sender to the recipient, but sometimes the signature can be broken
without any malicious attempt to modify the message... It also should
prove the message comes from the sender and not from somebody
impersonating him/her, but all it can prove, is the sender has control
of the key... I mean, if somebody steals my key, that somebody would be
able to use it to sign messages, but it would not be me the one writing
them... but as long as there are not legal or economical consequences,
I'd consider signatures as a proof of the sender identity...
For more details about what can a signature prove, ask Robert J.
Hansen, he knows a lot more about that (well, a lot more about a lot of
things related to GPG and signatures) than me. I just started using GPG
on april 2008...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----
More information about the Gnupg-users