On 05.11.2018 21:37, Viktor wrote: >> Sending an encrypted e-mail additionally verifies that the user controls >> the key in question. > > But you can easily send email with any address in 'from' field. > It does not mean you really control this email address.
Maybe there is a small misunderstanding here. I meant sending an e-mail *to* the registering person encrypted using *their* OpenPGP key. This way it can be read *only* by them even if they are using "insecure e-mail system" :) (there is also a minor point that properly deploying DMARC will protect from spoofing "From" field on major mail providers) Kind regards, Wiktor -- https://metacode.biz/@wiktor _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
