Re: Email encryption and virus scanning

[Frank Knobbe <fknobbe () knobbeits com>]

I don't care right now, but if you call me names in a signed email, and
I slap a lawsuit on you, and you claim you never sent the email, then I
care. Once you have been ordered by the court to produce the keys you
signed the email with, the signature matters.

Oh, oops.... now I opened the can of worms. Are signed emails more a
liability then assurance? ;)

Regards,
Frank


PS: I stand to what I said. After all, it's signed... :)


On Tue, 2002-05-21 at 10:00, Frederick M Avolio wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On the Internet, an insignificant number of e-mail messages are
> encrypted. Of those that are, an insignificant number of those rely on
> signatures for anything.
>
> I am not saying it is right, but I am saying it is correct. No one
> (for some value of "no one") is sending and receiving email from the
> Wachovia Bank.
>
> So, back on target, for most of the Internet and for most
> organizations, the risk is close enough to zero to spend your time and
> effort on other defenses against more likely targets and let desktop
> AV, which people already should have in a Windows environment, worry
> about this.
>
> This is signed. Do you care? No. And most transactions are like this.
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGPfreeware 6.0.2i
>
> iQA/AwUBPOphDgtFk8c1Ic6gEQJd/gCePl1dRqgObgF9kuaXnH7Jcp/ftr4AoLFX
> saUHhng/sJK4JFmiTeuBiDtL
> =lHDC
> -----END PGP SIGNATURE-----

Attachment: signature.asc
Description: This is a digitally signed message part