Re: [openpgp] Put Signature in an Email's Header

Wiktor Kwapisiewicz <> Tue, 08 August 2023 10:25 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 13680C151552 for <>; Tue, 8 Aug 2023 03:25:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id xQRC9mEFGIcN for <>; Tue, 8 Aug 2023 03:25:50 -0700 (PDT)
Received: from ( []) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by (Postfix) with ESMTPS id 1FDB5C151074 for <>; Tue, 8 Aug 2023 03:25:49 -0700 (PDT)
Message-ID: <>
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=key1; t=1691490347; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=bUPJOdz2eZikE+lzT57d9jQCmGewTiLEEiuRJO2LHVI=; b=L4IlFYwOGRRgE2B/0n7uoNM9vEfnXI+WZ2L/F+XwIU1OceIyKNkcRCZ/I0q00xJQoB7Ggz X0JeP/AWu0NYx5E6fLbi+qoFALVOd9NHUwp3BKoUEWxkdvUNszsNs3Tc11i65CFflt4OFn D2g1DB4EnrueqGC63zn7TaMaeKd0SUk=
Date: Tue, 08 Aug 2023 12:25:45 +0200
MIME-Version: 1.0
Content-Language: en-US, pl-PL
To: Werner Koch <>
References: <> <20201211095836.5218a72e@computer> <> <> <> <> <> <> <> <>
X-Report-Abuse: Please report any abuse attempt to and include these headers.
From: Wiktor Kwapisiewicz <>
Organization: Metacode
Cc:, Kai Engert <>
In-Reply-To: <>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Migadu-Flow: FLOW_OUT
Archived-At: <>
Subject: Re: [openpgp] Put Signature in an Email's Header
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 08 Aug 2023 10:25:55 -0000

On 8.08.2023 12:13, Werner Koch wrote:> A signed mail with the signing 
key included (as done by CMS) is a
> straightforward way to bootstrap encrypted communication.  It is mail
> standards compliant and does not break when for example forwarding
> mails.

As far as I know (please correct me) there is no RFC number of the 
standard that specifies something like that for OpenPGP? (I mean 
"signing key included (as done by CMS)").

> You are tackling problems which have long been solved.

If by "have long been solved" you mean this: 
then it's only a draft.

If Kai submits a draft of his own solution they'd be equal alternatives 
that can be considered by individual implementers.

Having been on the receiving end of the "no can do" advice with this 
mailing list not once, not twice I'd encourage Kai to try it out anyway 
and see the real-world impact of his solution first-hand.

Kind regards,