| Eugene Smiley on Tue, 9 Sep 2003 16:24:07 -0400 |
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Charles Stack wrote: > You may be the would be victim of an spoof or potential identify > theft. There are multiple ways to forge encrypted e-mail and > signatures. It is possible as well that by sending you a signed > message, your response to that message could afford a would-be > attacker with a known plaintext attack against your certificate. This just isn't possible with current technology. I hesitate to say that it will never be possible, but gpg has protections to prevent "known plaintext attacks". > It's possible that Erin's certificate has already been compromised. > It was established that the key hasn't been compromised. > I would suggest that both you and Erin change your certificates. HA! -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2-nr2 (Windows XP) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE/XjbU6QPtAqft/S8RAoUgAJ9Gq3hJj2M6btuve0FzzPRhgGrBxACgnB6D Y5OabwySyQUdO5tGh1zB+JE= =Ch6o -----END PGP SIGNATURE----- Attachment:
smime.p7s
|
|