Bugtraq mailing list archives

Re: crypto flaw in secure mail standards

From: Tollef Fog Heen <tollef () add no>
Date: 27 Jun 2001 14:49:48 +0200

* "Riad S. Wahby" 

| Derek Atkins <warlord () MIT EDU> wrote:
| > The problem is not at all with the crypto.  The problem is with the
| > integration of the crypto with applications like e-mail.
| 
| In this spirit, I have produced a patch for Mutt that adds an option
| to include the To:, From:, CC:, and Subject: headers at the end of PGP
| signed messages.

Another way to do it is to sign the headers as well.  Look at
signcontrol from INN, which could probably be modified for this
purpose.

-- 

Tollef Fog Heen
You Can't Win

Current thread:

crypto flaw in secure mail standards Don Davis (Jun 22)
- Re: crypto flaw in secure mail standards Gregory Steuck (Jun 22)
- Re: crypto flaw in secure mail standards David Howe (Jun 22)
- Re: crypto flaw in secure mail standards Florian Weimer (Jun 24)
- <Possible follow-ups>
- crypto flaw in secure mail standards Don Davis (Jun 24)
- Re: crypto flaw in secure mail standards David Howe (Jun 24)
  - Re: crypto flaw in secure mail standards Jim Halfpenny (Jun 25)
- Re: crypto flaw in secure mail standards Riad S. Wahby (Jun 24)
  - Re: crypto flaw in secure mail standards Tollef Fog Heen (Jun 27)
- Re: crypto flaw in secure mail standards Richard Atterer (Jun 28)
  - Re: crypto flaw in secure mail standards Robert Bihlmeyer (Jun 29)