I cannot "force" my recipients to install any PGP software so I was thinking about creating signature verification form on my website. If someone wanted to check if the email is really from me, he/she could paste the signed email part on the form, then the server-side script would verify that.
I'm quite new to PGP, so correct me if I'm wrong and don't laugh too much :) ; would this be achievable? I know I'd need to have my public key accessible to the validation script. While writting this response I've actually stumbled across a page that I think does what I need (http://www.sin-online.nl/ds/) Actual coding of the script should be v.easy, I'm just not sure if the concept is correct. Thanx in advance Peter Robert J. Hansen-3 wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > >> I'm looking at easy way for my email recipients to validate that >> email sent >> from me is actually from me. > > The obvious way is to suggest they use an OpenPGP application, such > as GnuPG or PGP, to verify your signature. > >> Is there some secure provider of such service? > > It all depends on whom you're willing to trust, and how much you're > willing to trust them. > >> Are there maybe better ways to do it? > > If they need to validate your email, OpenPGP is one of the best ways > to do it. S/MIME would also work well for the task. > > (Given that this is the GnuPG-Users mailing list, any further > comments I make on this will be GnuPG only. However, honesty > required that I point out alternatives.) > > > > - -- > Robert J. Hansen <[EMAIL PROTECTED]> > > "Most people are never thought about after they're gone. 'I wonder > where Rob got the plutonium?' is better than most get." -- Phil Munson > > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.7 (Darwin) > > iFYEAREIAAYFAkZVs4UACgkQf2XByo0Cu7NnUQDfdaBLcoMSLiHXTvNyTlQTTGDT > aZt49Ng4momhywDeM+JQYQc+hxcRPWAg/3KEpobPL4/vR6n8vbZPj4kBHAQBAQgA > BgUCRlWzhQAKCRC3APSC/q+BCU2PB/9vgEFPRAH9XK5FokZyW/DOq74sn+md4UsT > 9bcsXJVW85k/uLPPZUJ9stSKrqVQ+j2HVVKTRbEvmPSo+GET4PF2jp3R2yzgz5IF > 2eChS5xgqubMedg0DHSWHapXL3eFYU7E18dESQVh5qR5wE3XVOLLUaKdC9bJS/fN > hLWyBaLNW5SGJKsWueoqRGT8yF7DWz6gxlkwGRrD8px23uNMR3y8avDUPTuC9l7l > RLBxnH6GGEE0uLJgsm2jnTw67+/j89aiEdV3b72w6sk/uCVVn9ZBuVRagI0OcTFO > qk/5a5640xbybW4EjobzK0l8PTzV/hstEmzWMhNWnr+c9R0FcLLP > =1MeM > -----END PGP SIGNATURE----- > > _______________________________________________ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > > -- View this message in context: http://www.nabble.com/easy-way-to-confirm-email-validity-tf3808131.html#a10788851 Sent from the GnuPG - User mailing list archive at Nabble.com. _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
