Can I create domain keys?

Jan Eden me at
Wed Aug 14 12:17:36 CEST 2013

On Wed, Aug 14, 2013 at 10:06:59AM +0000, Henry Hertz Hobbit wrote:
> On 08/14/2013 08:33 AM, Johan Wevers wrote:
> > On 14-08-2013 5:36, Foo Bar wrote:
> > 
> >> I would like to create a domain key, which can be used for all
> >> emails in a particular domain. For example, if the key is for
> >> "*", then sending to both "foo at" and
> > "bar at"
> >> would use this key.
> >>
> >> Is this possible with GPG?
> > 
> > You can use each key for each mail, your sender address doesn't have to
> > be the address in the key.
> > 
> I am not saying you are wrong because I don't know. But it does
> seem dangerous from a real world practical point of view.
> Should I really be able to send a message pretending to come
> from herrprofessor at when I am really just a visitor
> to the University being awarded an Honery degree?  Part of that
> was being given a hhhobbit at email account since
> all people granted a Ph.D. are also given an email account that
> they can use until they are dead unless they ask that it be
> closed down.

I can always create a key for herrprofessor at and send
messages from this address signed with the key. But if I do not control
the domain (or at least a mailbox associated with the address), I will
never receive replies to my forged messages.

- Jan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: </pipermail/attachments/20130814/c3b0227e/attachment.sig>

More information about the Gnupg-users mailing list