Re: [PLUG] Possible Trojan/Virus in the wild?

gabriel rosenkoetter on Sun, 5 May 2002 14:41:26 -0400

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Possible Trojan/Virus in the wild?

From: gabriel rosenkoetter <gr@eclipsed.net>

To: plug@lists.phillylinux.org

Subject: Re: [PLUG] Possible Trojan/Virus in the wild?

Date: Sun, 5 May 2002 14:41:13 -0400

Mail-followup-to: plug@lists.phillylinux.org

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

User-agent: Mutt/1.2.5.1i

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sun, May 05, 2002 at 02:16:30PM -0400, ian reinhart geiser wrote: > Well unlike the mutt sent gpg emails this one seems to render properly in > KMail... odd... the mutt emails show up with the email as an attachment > while this one renders correctly. > > any mutt users ideas on this? I've answered this question at least twice now. That was, as yours was, a clearsigned message. mutt follows RFC 2015, many other mailers don't. (Yet.) I can clearsign just fine in mutt (I'll clearsign this just to prove it), but auto-verifying a clearsigned message is a bit complicated (it means the MUA needs to do parsing of the message content itself which, as we know from Outlook, is a Bad Idea), which is why RFC 2015 is such a good idea. Sure, someone could still put evil stuff in a message and claim that it was application/pgp, but it would be gpg, not the MUA, that took the hit for that, which is less likely to be useful for an email virus. (mutt always keeps the addressbook data in the same place as far as data structures go, but people have many different ways the like to store that on-disk. I doubt many of you are also using ~/.addressbook for it, as I am, since I converted over from pine.) Verifying clearsigning requires a |gpg -v in mutt (which I did on both your message and Jesse's, and they both verified fine). Clearsigning is a bit more irritating in mutt, since it's a shell escape every time, which means it doesn't cache my (40 character) passphrase. But that's not really a justifiable complaint. - -- gabriel rosenkoetter gr@eclipsed.net -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (NetBSD) Comment: For info see http://www.gnupg.org iEYEARECAAYFAjzVfLYACgkQ9ehacAz5CRrCXgCePMltHXZpuAAiB2FDV+pQq2Dy LQgAoILsTaWsxO6ogyfEa17EUpAITWQk =eouf -----END PGP SIGNATURE----- ______________________________________________________________________ Philadelphia Linux Users Group - http://www.phillylinux.org Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce General Discussion - http://lists.phillylinux.org/mail/listinfo/plug

Follow-Ups:

Re: [PLUG] Possible Trojan/Virus in the wild?
From: ian reinhart geiser <geiseri@yahoo.com>

Re: [PLUG] Possible Trojan/Virus in the wild?
From: ian reinhart geiser <geiseri@yahoo.com>

References:

[PLUG] Possible Trojan/Virus in the wild?
From: multiple seriousity <msimons@slackware.com>

Re: [PLUG] Possible Trojan/Virus in the wild?
From: "Jesse Schultz" <schultj@netaxs.com>

Re: [PLUG] Possible Trojan/Virus in the wild?
From: ian reinhart geiser <geiseri@yahoo.com>

Prev by Date: [PLUG] Fwd: X Display problem

Next by Date: Re: [PLUG] Possible Trojan/Virus in the wild?

Previous by thread: Re: [PLUG] Possible Trojan/Virus in the wild?

Next by thread: Re: [PLUG] Possible Trojan/Virus in the wild?

Index(es):

Date

Thread