Signing a key (meaning)

MFPA expires2011 at ymail.com
Tue Apr 12 00:34:43 CEST 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Monday 11 April 2011 at 6:06:48 PM, in
<mid:4DA33528.4010809 at grant-olson.net>, Grant Olson wrote:


>> but WHY should anybody (even an
>> attacker) place an email address in the ID over wich
>> they have no control?

> The obvious example is the standard MITM attack.

[...]

>>> At worst, some hypothetical exploit by some
>>> hypothetical attacker compromises your
>>> communications.  (Developing this hypothetical attack
>>> is left as an exercise to the reader...)

>> Unfortunately I'm not able to develope such an attack,
>> and think there is none of importance. Could you
>> please help me?

> I personally don't think there is one.

You already mentioned "the standard MITM attack." Isn't that one?

- --
Best regards

MFPA                    mailto:expires2011 at ymail.com

A bird in the hand makes it awfully hard to blow your nose
-----BEGIN PGP SIGNATURE-----

iQE7BAEBCgClBQJNo4INnhSAAAAAAEAAVXNpZ25pbmdfa2V5X0lEIHNpZ25pbmdf
a2V5X0ZpbmdlcnByaW50IEAgIE1hc3Rlcl9rZXlfRmluZ2VycHJpbnQgQThBOTBC
OEVBRDBDNkU2OSBCQTIzOUI0NjgxRjFFRjk1MThFNkJENDY0NDdFQ0EwMyBAIEJB
MjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0N0VDQTAzAAoJEKipC46tDG5pfxID/jk2
WNaMjt1k9Q+angyzPAOe/ztfc1GoBDg3jSfuBwknluefLDijapiVPKis74I4qohb
YZiATyPSKxyio6dVDgVRGL/8izUCFDtjmgh4IBIgjd13UDNcLFbKl/0cOZKTXeOg
ZEEr8kOcEA/1/jF+AQPWYZrn/xQWwSPwmX7F9q6e
=3U1w
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list