On Thu, 25 Jul 2013 21:33, takethe...@gmx.de said: > Which mailing lists are meant? Can't emails be tempered, too? If I've
The GnuPG mailing list and all the mailing list archives. If an attacker would modify the archive on the gnupg.org server, he would also need to change the independent archives like gmane etc. I pretty sure this will be spotted relatively soon. Oh and well the attacker would also need to tell you why the signature of the mail does not anymore check out. In any case we don't rely on the checksums but on the OpenPGP signatures which are created by me using a smartcard hosted key. But see also the article I mentioned in my other reply. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users