Ross Vandegrift <[EMAIL PROTECTED]> [2002-11-18 22:03:39 -0500]: > Whoa. GPG/PGP signitures used to carry a -50 or so! What's the line of > thinking here? I've never once recieved a signed piece of spam that was > signed. OTOH, I've recieved lots of real signed mail. Has this rule been > exploited? Maybe the idea of signing legit commercial mail wasn't so > hot.
SA currently does not actually check that it is a real signature. It just looks for the signature headers. This is not quite the same thing. It would seem to be a logical step that if the header is present that the actual signature could be checked and then an even better scoring assigned. Bob
msg10383/pgp00000.pgp
Description: PGP signature
