On 30/09/2022 3:31 pm, Jan van den Broek wrote:
2022-09-29, Mike Dewhirst<mi...@dewhirst.com.au> schrieb:This is an OpenPGP/MIME signed message (RFC 4880 and 3156)Why?
Good question.Further to Peter's explanation, email is the primary conduit for hackers. At this point in time human education and training is the only defence. The bad guys count on human error because that's what humans are good at.
If everyone signed their mail and all mail clients defaulted to expecting signed email from correspondents for whom the public key is known, some of that defence can be delegated to the computer.
I'm not expecting this any time soon but it doesn't hurt to get the message out.
Most email activists demand end-to-end encryption and obviously signing email is part of that. However, my view is that email privacy, while very important, is an oxymoron. If you need encrypted messages you would never use email. You would meet under a waterfall.
So the answer to your question is signed email is easy and if it becomes popular it has potential to defeat hackers.
Cheers Mike
[Schnipp]
-- Signed email is an absolute defence against phishing. This email has been signed with my private key. If you import my public key you can automatically decrypt my signature and be sure it came from me. Just ask and I'll send it to you. Your email software can handle signing.
OpenPGP_signature
Description: OpenPGP digital signature
-- https://mail.python.org/mailman/listinfo/python-list
