Re: [Mailman-Developers] Crypto-sign to post

Sun, 12 Nov 2006 10:38:37 -0800 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 11/11/06 11:03 PM, Barry Warsaw wrote:
> I suppose you could also have each mailing list publish a pubkey and  
> require that messages be encrypted with that pubkey in order to get  
> posted.  Of course that increases the cycles involved on both ends,  
> but it allows you to accept messages without requiring the  
> registration of each sender's key.  Sure, spammers could use the same  
> key to sign spam, but I wonder if that wouldn't be more work than is  
> worthwhile for a botnet.

Now there's something which I'm sure it's a small subset of people would
be interested in, but it would definitely be nice.. the ability to run
an entirely encrypted mailing list.  You encrypt your message to the
"list key", and Mailman decrypts it, inserts some bit in the message
about the original signing key, and encrypts it to each recipient.
Subscribers would have to either submit a key to Mailman, or at least a
key ID which could be retrieved from a keyserver.  With verp I would
think that encrypting to individuals would be slightly simpler - but
again, a lot of CPU cycles to make it work.  And I'm not sure how many
lists would take advantage of it.  Would also make archiving an
interesting proposition...

Sorry; thinking aloud again :>

- --
Steve Huston - W2SRH - Unix Sysadmin, Dept. of Astrophysical Sciences
  Princeton University  |    ICBM Address: 40.346525   -74.651285
    126 Peyton Hall     |"On my ship, the Rocinante, wheeling through
  Princeton, NJ   08544 | the galaxies; headed for the heart of Cygnus,
    (609) 258-7375      | headlong into mystery."  -Rush, 'Cygnus X-1'
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFV2oSCCKCCLIg8RMRAgCcAKDt8BY24u6lda2PtC0+jdxRNiqfcwCbB4dX
+bj5fzpqp1sx5UbUnzrSUvg=
=im3W
-----END PGP SIGNATURE-----
_______________________________________________
Mailman-Developers mailing list
Mailman-Developers@python.org
http://mail.python.org/mailman/listinfo/mailman-developers
Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py
Searchable Archives: 
http://www.mail-archive.com/mailman-developers%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-developers/archive%40jab.org

Security Policy: 
http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq01.027.htp

Reply via email to