From owner-freebsd-questions@FreeBSD.ORG Fri Oct 3 12:57:16 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8F81A16A4B3 for ; Fri, 3 Oct 2003 12:57:16 -0700 (PDT) Received: from astra.telenet-ops.be (astra.telenet-ops.be [195.130.132.58]) by mx1.FreeBSD.org (Postfix) with ESMTP id D025543FE0 for ; Fri, 3 Oct 2003 12:57:15 -0700 (PDT) (envelope-from n.b@myrealbox.com) Received: from localhost (localhost.localdomain [127.0.0.1]) by astra.telenet-ops.be (Postfix) with SMTP id 276113801B; Fri, 3 Oct 2003 21:57:14 +0200 (MEST) Received: from cronos.home.vsb (d5153CAA6.kabel.telenet.be [81.83.202.166]) by astra.telenet-ops.be (Postfix) with ESMTP id DA3E737EAA; Fri, 3 Oct 2003 21:57:13 +0200 (MEST) From: Guy Van Sanden To: "Robert G. Waycott" In-Reply-To: <1065204942.43714.24.camel@localhost> References: <1065204942.43714.24.camel@localhost> Content-Type: text/plain Message-Id: <1065211033.8290.15.camel@cronos.home.vsb> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.4-1tex Date: Fri, 03 Oct 2003 21:57:13 +0200 Content-Transfer-Encoding: 7bit cc: freebsd-questions@freebsd.org Subject: Re: RC1 ... PGP signing ... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 03 Oct 2003 19:57:16 -0000 On Fri, 2003-10-03 at 20:15, Robert G. Waycott wrote: > My friend just notified me that rc1 is out. I have been working the past > few days, so was not aware. Now, I wonder if I must reinstall the system > with an rc1 .iso, or if a CVSup, portupgrade/make world will do? > > Second question: why do many users on the list PGP sign messages? Is > there something nefarious out there about which I should worry? Is > PGP-signing really providing a great deal of security? > Although I don't sign my messages to mailing lists, PGP signatures are a good way to determine if a message really came from the person that the headers indicate. If you are really sure that a particular key belongs to someone, than you can rest assure that a message signed by that key came from the sender (unless he got his private key and passphrase stolen) *and* that the message arrived unchanged. You can do a lot of damage by either forging E-mails from someone, or modifying E-mails (I saw that kind of stuff in my college-days, some kids send offensive Emails to teachers from other kids addresses). No PGP signatures should solve this problem. One cautionary note, PGP/Mime signed mails are not displayed by Outlook at all (its MIME implementation is a complete mess). > Esse quam videri, > > --Bob. > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"