small security glitches

gnupg at gnupg at
Tue Nov 1 13:52:18 CET 2011

On 01/11/11 12:44, Hauke Laging wrote:

>> Now switch sides. Suppose you're sending an encrypted mail to a collegue.
>> You're encrypting it for his eyes only. If you don't sign the message, he
>> may or may not choose to decrypt it. If you sign the encrypted mail, then
>> he can verify the signature, see if he trusts that key, and make a more
>> meaningful decision.
> But this isn't possible with email, is it?

Thunderbird + Enigmail here automatically decrypts encrypted email when
you view it, regardless of whether or not it is signed.

Mike Cardwell
Professional   0018461F/35BC AF1D 3AA2 1F84 3DC3 B0CF 70A5 F512 0018 461F

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20111101/e0ab5698/attachment-0001.pgp>

More information about the Gnupg-users mailing list