Re: Thoughts on an OpenPGP header?

To: Simon Josefsson <jas@xxxxxxxxxxx>
Subject: Re: Thoughts on an OpenPGP header?
From: Werner Koch <wk@xxxxxxxxx>
Date: Mon, 06 Dec 2004 14:59:58 +0100
Cc: mutt-dev@xxxxxxxx
In-reply-to: <iluis7je20c.fsf@xxxxxxxxxxxxxxxxxxx> (Simon Josefsson's message of "Fri, 03 Dec 2004 18:16:03 +0100")
List-unsubscribe: <mailto:mutt-dev-request@mutt.org?body=unsubscribe>
Mail-followup-to: Simon Josefsson <jas@xxxxxxxxxxx>, mutt-dev@xxxxxxxx
Organisation: g10 Code GmbH
References: <iluis7je20c.fsf@xxxxxxxxxxxxxxxxxxx>
Sender: owner-mutt-dev@xxxxxxxx
User-agent: Gnus/5.1006 (Gnus v5.10.6) Emacs/21.3 (gnu/linux)

On Fri, 03 Dec 2004 18:16:03 +0100, Simon Josefsson said:

> could be retrieved, and 'gpg --import' is invoked on it.  Another is a
> "Secure reply" button, that uses the Key ID information in the header,
> to make a signed/encrypted reply to a message.

I don't think that this is a good idea.  Mutt should default to an
encrypted reply if a encrypted message is replied to.  The keyID to
encrypt to may then be taken either from the signature of the message
(most messages are encrypted and signed) or from the list of
recipients the orginal mssage has been encrypted too.  The latter
poses a security problem because an attacker might have added an
additional recipient with a random session ID.

The PGP header is still useful as a hint on where to get an updated
key for non-signed messages in case of keyserver problems.  That is
useful if you want to reply encrypted on a non-encrypted message.


Salam-Shalom,

   Werner

Follow-Ups:
- Re: Thoughts on an OpenPGP header?
  - From: Simon Josefsson

References:
- Thoughts on an OpenPGP header?
  - From: Simon Josefsson

Prev by Date: Re: Thoughts on an OpenPGP header?
Next by Date: Re: Thoughts on an OpenPGP header?
Previous by thread: Re: Thoughts on an OpenPGP header?
Next by thread: Re: Thoughts on an OpenPGP header?
Index(es):
- Date
- Thread