sign encrypted emails

MFPA expires2013 at ymail.com
Mon Jan 6 02:47:39 CET 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Friday 3 January 2014 at 10:28:28 AM, in
<mid:2002014.1CKrbWpAov at inno.berlin.laging.de>, Hauke Laging wrote:


MFPA:
>> Again, this would be flagged up if the sender was in
>> the habit of signing outgoing messages (as you
>> stated).

> No, it wouldn't. The reason is that the signature is
> created the same  way in the two cases encrypted and
> non-encrypted. Thus you can apply  encryption later
> with the recipient having no chance at all to determine
> who encrypted.

Most "signed and encrypted" messages created with PGP or GnuPG have
the two processes applied together - you do not normally decrypt a
message and then see a signed message as the output. An exception is
"signed and encrypted" messages created in the Hushmail web interface.



- --
Best regards

MFPA                    mailto:expires2013 at ymail.com

Confusion is always the most honest response
-----BEGIN PGP SIGNATURE-----

iPQEAQEKAF4FAlLKC0pXFIAAAAAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0
N0VDQTAzAAoJEKipC46tDG5p50IEAKcL07PhoNvgH52ulIc+5ZPbo3dm1MH1a8aK
nrecrH7gdIkNgriytz7bgOyK5TWmmar2c0LdDqWN5qw+iq/BdcUpokwd2fZC3ckQ
z9cJe4BWBwKaTXYMSc1DTeoHage0Awuuv8E3P6cpFm0C6hiyQATbZw3kH0U4XfXj
mxykuAU+
=F7H3
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list