Educause Security Discussion mailing list archives

Re: New SANS Discount Programs to Educational Centers

From: "H. Morrow Long" <morrow.long () YALE EDU>
Date: Mon, 1 Dec 2003 19:47:00 -0500

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Of course the hoped-for S/MIME ideal (for both digital 'signing' and
encryption) is when using it becomes so transparent that real end users
actually use it (because they don't have to do anything nor notice it).

Apple Mail in MacOS X is about there (more so than even Netscape
or Outlook). It can 'sign' all messages by default -- which is the way
to do it for users. Of course it can be annoying when various list s/w
'breaks' it -- but I think that the tradeoff between having someone
have to choose whether to sign messages or just having all messages
signed would be best when done automatically.

Just my $0.02 :-)

Note I've also signed this with PGP for MacOS X (for which I have to go
through
a lot more hoops to have it sign my messages so I use it much more
sparingly).

- - Morrow

On Dec 1, 2003, at 6:15 PM, Dave Koontz wrote:
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

S/MIME and PGP/MIME Based Message Signing has always been a "no-no" on
ANY listserv I've ever been on for this very reason. You will notice
that most users post with an inline PGP/GnuPG signature (like I've
done here) ... IF and when they desire verification. Even vendors
use
this inline method when posting security patch notices to their own
lists. Just about every list adds disclaimer text or taglines to
messages posted to them. Given these common alterations, you may
want to re-think your MIME based message signing to something more
universal and forgiving, such as PGP/GnuPG inline signing. Thwate
and Verisign MIME signatures are great, but not for signing list
messages.

Just my 1/2 cent worth.... <g>

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0 - not licensed for commercial use: www.pgp.com

iQA/AwUBP8vg4zkrggk30C2xEQK6DwCfVq3TakW0zex2T9lBIhZEieLmwg4AoPue
dEEw4Gv7cWaZYjRd5mQJbb2y
=Mo/s
-----END PGP SIGNATURE-----

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at
http://www.educause.edu/cg/.

Attachment: smime.p7s
Description:

Current thread:

New SANS Discount Programs to Educational Centers H. Morrow Long (Nov 25)
- <Possible follow-ups>
- Re: New SANS Discount Programs to Educational Centers David Escalante (Dec 01)
- Re: New SANS Discount Programs to Educational Centers H. Morrow Long (Dec 01)
- Re: New SANS Discount Programs to Educational Centers Jefferson, Ronnie V. (Dec 01)
- Re: New SANS Discount Programs to Educational Centers Joe St Sauver (Dec 01)
- Re: New SANS Discount Programs to Educational Centers Dave Koontz (Dec 01)
- Re: New SANS Discount Programs to Educational Centers Jefferson, Ronnie V. (Dec 01)
- Re: New SANS Discount Programs to Educational Centers H. Morrow Long (Dec 01)
- Re: New SANS Discount Programs to Educational Centers JS Gluck (Dec 02)
- Re: New SANS Discount Programs to Educational Centers Jefferson, Ronnie V. (Dec 02)