John W. Baxter writes: > I think all traces of the signature need to be stripped after it is used for > verification (but I could be wrong).
This should be an option or at least there should be an easy way to work around it; suppose the message is something like a collection of checksums for a distro, or a signed patch for projects that use such things? However, for general purposes I think that stripping the signature would be a good idea. Specifically, I would imagine that even if you sign "the whole message", this still leaves room for spammish use of the preamble and trailer (or even the Subject header), while the signed body of the message is used in a replay attack. _______________________________________________ Mailman-Developers mailing list Mailman-Developers@python.org http://mail.python.org/mailman/listinfo/mailman-developers Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-developers%40python.org/ Unsubscribe: http://mail.python.org/mailman/options/mailman-developers/archive%40jab.org Security Policy: http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq01.027.htp
