Re: [Evolution] distinguishing a signature verification from html e-mail

From: Dan Winship <danw ximian com>
To: Dan Stromberg <strombrg dcs nac uci edu>
Cc: Not Zed <notzed ximian com>, evolution lists ximian com
Subject: Re: [Evolution] distinguishing a signature verification from html e-mail
Date: 19 Feb 2003 11:36:46 -0500

There was a bug in bugzilla about having a keyboard shortcut for
signature verification....

On Wed, 2003-02-19 at 10:52, Dan Stromberg wrote:

On Tue, 2003-02-18 at 16:48, Not Zed wrote:

I guess it's not horrible having to click for a verification (although
it may tend to make me not bother to verify, which kind of defeats the
purpose of signing mail to some extent), but it sure would be a lot


Well its so that it can't be faked visually with html mail etc.


I'm reasonably sure you could do something like putting a thin colored
bar down the left hand side of message content, leaving the signature
unindented in this way.  Then a faked signature would have the colored
bar.  I do agree as far as that it's easier for someone to understand
the difference the current way, though.  Classic security/convenience
tradeoff I guess.

References:
- [Evolution] autoimporting public keys?
  - From: Dan Stromberg
- Re: [Evolution] autoimporting public keys?
  - From: Not Zed
- [Evolution] distinguishing a signature verification from html e-mail
  - From: Dan Stromberg

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]