-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Thursday 28 November 2002 11:06, Ronald KA4INM Youvan wrote:
> > Some of you on the list may notice that a few of us gpg sign our email
> > so you know it is coming from us.
>
> If I were to receive mail from an impostor, someone else using your name,
> with or without your `sig. file' I don't think I would notice.
There are more reasons than simply email signing to use GPG. Take a look
at the rash of trojaned code recently (sendmail, openssh, irc, tcpdump)...
Most developers have taken to signing the distribution tarball/MD5 hash.
This is one method to ensure the code has not been tampered with.
It's a Good Thing [tm] to know how to check keys, and verify files. Even
if you don't use GPG for signing your email. ;)
- --
GPG Key fingerprint = AE1C 123A 1153 8A63 E8A9 FAEA 111D CCB8 7527 701B
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Brian Coyle, GCIA http://www.giac.org/GCIA.php
iD8DBQE96Co6ER3MuHUncBsRAneoAJ9vZznzSNkBGIUmmeo9j1xRXljKbACfeBnM
OAPdGRFadghnoIz93ordBbc=
=sEvD
-----END PGP SIGNATURE-----
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 20:14:40 EDT