[please leave attribution in when replying]
On Mon, 2002-08-19 at 11:49, Dominikus Scherkl wrote:
The mistake here, on Bob's part, is to reply to a message without
paying attention to the e-mail address being used
[...]
The whole attack looks very suspicious to me...
I guess the correct 'solution' to prevent the 'attack' would be to file
bug reports with gpg-aware mail clients that do not at least display a
warning when replying to/forwarding an originally encrypted message
unencrypted.
cheers
-- vbi
--
secure email with gpg http://fortytwo.ch/gpg
signature.asc
Description: This is a digitally signed message part