Re: [openpgp] [messaging] On Signed-Only Mails
Peter Gutmann <pgut001@cs.auckland.ac.nz> Tue, 29 November 2016 09:25 UTC
Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B6029129615 for <openpgp@ietfa.amsl.com>; Tue, 29 Nov 2016 01:25:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.697
X-Spam-Level:
X-Spam-Status: No, score=-5.697 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-1.497] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=auckland.ac.nz
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F6tRmsTXMxxo for <openpgp@ietfa.amsl.com>; Tue, 29 Nov 2016 01:25:47 -0800 (PST)
Received: from mx4.auckland.ac.nz (mx4.auckland.ac.nz [130.216.125.248]) (using TLSv1.2 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4C16F129630 for <openpgp@ietf.org>; Tue, 29 Nov 2016 01:25:47 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=auckland.ac.nz; i=@auckland.ac.nz; q=dns/txt; s=mail; t=1480411547; x=1511947547; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=yGQo77Gqf1bywBbX29ClRoN+DzSmQayH/E82VyrFLy0=; b=yo6jymKH+me1YKwmOVXksh+qqTwHqmDUALQvpxZ340lM96DG5jCWCBRS XluLI3TuVRw4nWhqMPKS5Vh73cXLBP2YKTPTpscjz8GW1ryNQ7ic0nr1h LuNtLakX/1oDt2JfMmEUxKjdQAf3h3awtHymE05Nva947kUY9b2inApQM sfqcTgIF0l/YyjMu8MzTHTK9dGoxgrFdb3bBOiJPUKFxNURtPK/D6uHbd Hv9X+B9wsMsfn3pGqhroi6eITkQzQ/fNbYzvt8cMO9kP0mVhs8jm7Jp26 +9tUdjoKzFlW/kWvVeyvD1oNOGmKYut2Hy4Ey2TeJ6E4kwdZBz+MLLq05 Q==;
X-IronPort-AV: E=Sophos;i="5.31,715,1473076800"; d="scan'208";a="117777255"
X-Ironport-HAT: MAIL-SERVERS - $RELAYED
X-Ironport-Source: 10.6.2.5 - Outgoing - Outgoing
Received: from exchangemx.uoa.auckland.ac.nz (HELO uxcn13-ogg-d.UoA.auckland.ac.nz) ([10.6.2.5]) by mx4-int.auckland.ac.nz with ESMTP/TLS/AES256-SHA; 29 Nov 2016 22:25:45 +1300
Received: from uxcn13-tdc-d.UoA.auckland.ac.nz (10.6.3.5) by uxcn13-ogg-d.UoA.auckland.ac.nz (10.6.2.5) with Microsoft SMTP Server (TLS) id 15.0.1178.4; Tue, 29 Nov 2016 22:25:45 +1300
Received: from uxcn13-tdc-d.UoA.auckland.ac.nz ([fe80::e4eb:6def:adaa:5544]) by uxcn13-tdc-d.UoA.auckland.ac.nz ([fe80::e4eb:6def:adaa:5544%14]) with mapi id 15.00.1178.000; Tue, 29 Nov 2016 22:25:45 +1300
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: Vincent Breitmoser <look@my.amazin.horse>, "openpgp@ietf.org" <openpgp@ietf.org>, "messaging@moderncrypto.org" <messaging@moderncrypto.org>
Thread-Topic: [messaging] On Signed-Only Mails
Thread-Index: AQHSSiGeoDCj5wadw0iP/6y8V1XsrqDvr59V
Date: Tue, 29 Nov 2016 09:25:45 +0000
Message-ID: <1480411542920.18425@cs.auckland.ac.nz>
References: <20161129091837.GA25812@littlepip.fritz.box>
In-Reply-To: <20161129091837.GA25812@littlepip.fritz.box>
Accept-Language: en-NZ, en-GB, en-US
Content-Language: en-NZ
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [130.216.158.4]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/CZSZAf93Rjth_siVonHm6G9uqus>
Subject: Re: [openpgp] [messaging] On Signed-Only Mails
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Nov 2016 09:25:50 -0000
Vincent Breitmoser <look@my.amazin.horse> writes: >In some more detail: >https://k9mail.github.io/2016/11/24/OpenPGP-Considerations-Part-I.html > >[...] Signed-Only Mails are Useless [...] Yup, and it's for exactly the reasons given there that the S/MIME WG decided many years ago not to sign messages sent to the list. Courts, similarly, rule on the intent of the signer, not some attached bag of bits (see e.g. Steven Mason's excellent "Electronic Signatures in Law"). So while I wouldn't go so far as to call them harmful, I'd agree that they're mostly useless, unless you're using one to make some special point. Even then, if it's for legal purposes, a court will look at almost everything but the signature when deciding on its effect. Peter.
- [openpgp] On Signed-Only Mails Vincent Breitmoser
- Re: [openpgp] [messaging] On Signed-Only Mails Peter Gutmann
- Re: [openpgp] [messaging] On Signed-Only Mails Vincent Breitmoser
- Re: [openpgp] [messaging] On Signed-Only Mails Peter Gutmann
- Re: [openpgp] On Signed-Only Mails Kristian Fiskerstrand
- Re: [openpgp] On Signed-Only Mails Vincent Breitmoser
- Re: [openpgp] On Signed-Only Mails Brian Sniffen
- Re: [openpgp] On Signed-Only Mails brian m. carlson
- Re: [openpgp] On Signed-Only Mails Alexander Strobel
- Re: [openpgp] On Signed-Only Mails Peter Gutmann
- Re: [openpgp] On Signed-Only Mails Thijs van Dijk
- Re: [openpgp] On Signed-Only Mails Brian Sniffen
- Re: [openpgp] [messaging] On Signed-Only Mails Taylor R Campbell
- [openpgp] Steven Mason's "Electronic Signatures i… ianG
- Re: [openpgp] [messaging] On Signed-Only Mails ianG
- Re: [openpgp] [messaging] On Signed-Only Mails Phillip Hallam-Baker
- Re: [openpgp] Steven Mason's "Electronic Signatur… Phillip Hallam-Baker
- Re: [openpgp] Steven Mason's "Electronic Signatur… vedaal