PGP Encryption

Brian Morrison pmmail@rpglink.com
Wed, 15 Mar 2000 07:35:49 +0000 (GMT)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 14 Mar 2000 22:38:42 -0800 (PST), John M Price, PhD wrote:

>AFAIK, the following should happen:
>
>The message should be encrypted with the sender's key for the sent-mail
>folder, or left in plain text.

This is very dangerous, I feel that PMMail should respect the settings
in pgp.cfg rather than forcing the encryption to self. In the UK, new
legislation threatens us with having all our encrypted material opened
to state scrutiny. If I don't wish to have my correspondence read the
best defence is for it to be unreadable.

>
>PMMail should get the keys for all the recipients, and encrypt accordingly
>- each recipient receiving an individualy encrypted message which he or
>she can decrypt.

If a recipient has multiple keys on the key ring for a given addressee
it does not allow one to chose the key to be used. It really should do
this.

On a separate track I am seeing more and more instances where an
account that fetches by smtp is hanging and stops fetching until PMMail
is restarted. I would *really* like to see this investigated, just
because few people seem to use smtp delivery is no excuse for it not to
work correctly. This seems to have broken during the PMMail 2.00 beta
process, I could never get BoB and Icon to investigate it.


- -- 

Brian Morrison                                  bdm@fenrir.demon.co.uk

 "Almost noon, and she had yet to go the launderette in Concreton to 
 thaw out chickens in the spin-drier..."

PGP Public Key Fingerprint= C7 12 B9 54 00 0F 51 F6  37 9B 18 D1 E1 61 14 0B

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i OS/2 for non-commercial use
Comment: This comment _is_ plain text
Charset: cp850

iQA/AwUBOM89VPQTY1HeMuXFEQJHOgCg7XLOegpPocJp3w2dsWCcQ1ZzsiwAoM/P
IYhvNFoQ0hg2XIkaAb6TTTEt
=vB7H
-----END PGP SIGNATURE-----