> From: "Jason R. Mastaler" <[EMAIL PROTECTED]> > Date: Tue, 08 Oct 2002 11:58:32 -0600 > > Chris Garrigues <[EMAIL PROTECTED]> writes: > > > how hard would it be for TMDA to allow correctly signed PGP/GPG > > messages through without a confirmation while requiring a > > confirmation for all other messages? > > To clarify, do you mean allow through messages whose PGP/GPG signature > you can verify, or just messages which are signed, but not that you > can necessarily verify?
Well, it was just an off the top of my head thought, so I hadn't followed through. Strictly speaking, it ought to be only those I can verify, but I can see an argument for allowing anyone who has properly signed their messages. It certainly shouldn't allow those who have a bogus signature on their message. I think these are the cases of interest: 1) Valid signed messages from users who are on my key ring. 2) Valid signed messages from users who aren't on my key ring. 3) Invalid signatures. 4) Unsigned mail. I'd like #1 to get through without confirmation. I actually have my system set up to go to the gpg servers to look for users in category 2 and add them to my key ring, so I think I'd like #2 to be treated the same as #1, but other users might want them to confirm. I wonder if asking them to confirm with their public key would be unreasonable? I think #3 should be rejected. #4 should require confirmation. Going further, I suppose you might do different things depending on the trust relationship you have with the user. Chris -- Chris Garrigues http://www.DeepEddy.Com/~cwg/ virCIO http://www.virCIO.Com 716 Congress, Suite 200 Austin, TX 78701 +1 512 374 0500 World War III: The Wrong-Doers Vs. the Evil-Doers.
msg00370/pgp00000.pgp
Description: PGP signature
