Re: Signing Email Messages

[Celejar <celejar@gmail.com>]

On Fri, 2 Jul 2010 14:17:50 -0500
Arthur Machlas <arthur.machlas@gmail.com> wrote:

> On Fri, Jul 2, 2010 at 2:11 PM, Celejar <celejar@gmail.com> wrote:
> > On Fri, 2 Jul 2010 13:52:47 -0500
> > Arthur Machlas <arthur.machlas@gmail.com> wrote:
> >
> >> I just recently setup encrypted mail for my personal mail account,
> >> using icedove and enigmail. I'm curious about a general feature of
> >> "signing" the email. Why can't I just copy the "signature" portion of
> >> the email, which many people on this list attach to their posts, and
> >> paste it at the bottom of a fake email? Appreciate any comments or
> >> links you may have.
> >
> > Look at the signatures carefully.  Each one, even from the same signer,
> > is different, and depends on the exact contents of the message.  The
> > whole point of a signature is that if one is improperly attached to a
> > message, it won't match, and the mail reader or other client will
> > notice this.
> >
> > Celejar
> 
> Make abundant sense. And I assume they'd need my public key to verify
> the signature?

Exactly.  A mail client that receives a message signed by you
generally tries to look up your public key from a keyserver.

Celejar
-- 
foffl.sourceforge.net - Feeds OFFLine, an offline RSS/Atom aggregator
mailmin.sourceforge.net - remote access via secure (OpenPGP) email
ssuds.sourceforge.net - A Simple Sudoku Solver and Generator