Thank you for the quick reply. You're right - I didn't realize the thing about signing since I usually don't use it. It makes perfect sense though - so I know now that if I receive an encrypted e-mail from a sender but it's only encrypted, not signed - all I know is that the sender has access to the private key.. not necessarily the password. It 'should' be the sender, but not necessarily. Thanks again!
On 11/20/2010 8:51 AM, Robert J. Hansen wrote: > On 11/20/2010 8:36 AM, Gold IsMoney wrote: >> The issue is obvious - if it doesn't ask me for my password when sending >> e-mails, it means that anyone with access to my pc can go into >> Thunderbird and send encrypted e-mails, using my identity. > > It seems you're confusing encryption and signing. No passphrase is ever > needed in order to encrypt a message to someone. You only need a > passphrase when signing a message, to verify that it comes from you. > > > > > _______________________________________________ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users
0xB21871F5.asc
Description: application/pgp-keys
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
