[Evolution] distinguishing a signature verification from html e-mail

From: Dan Stromberg <strombrg dcs nac uci edu>
To: Not Zed <notzed ximian com>
Cc: evolution lists ximian com
Subject: [Evolution] distinguishing a signature verification from html e-mail
Date: 19 Feb 2003 07:52:41 -0800

On Tue, 2003-02-18 at 16:48, Not Zed wrote:

I guess it's not horrible having to click for a verification (although
it may tend to make me not bother to verify, which kind of defeats the
purpose of signing mail to some extent), but it sure would be a lot


Well its so that it can't be faked visually with html mail etc.


I'm reasonably sure you could do something like putting a thin colored
bar down the left hand side of message content, leaving the signature
unindented in this way.  Then a faked signature would have the colored
bar.  I do agree as far as that it's easier for someone to understand
the difference the current way, though.  Classic security/convenience
tradeoff I guess.

Attachment: signature.asc
Description: This is a digitally signed message part

Follow-Ups:
- Re: [Evolution] distinguishing a signature verification from html e-mail
  - From: Dan Winship

References:
- [Evolution] autoimporting public keys?
  - From: Dan Stromberg
- Re: [Evolution] autoimporting public keys?
  - From: Not Zed

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]