On Fri, 18 Jul 2003 10:10:37 -0700 David Shaw <dshaw(_at_)jabberwocky(_dot_)com>
wrote:
[...]
I do wonder what this case would mean in regards to the discussion
though:
1) Generate a RSA sign+encrypt key. Naturally the user ID on that
key
should have a self-signature.
2) Now change the key flags so that the primary is encrypt-only.
Is that an "encrypt-only" key?
[...]
in the olden days of pgp 2.x, some people would make two keypairs, and
would use one only for signing and one only for encrypting,
so, if someone now were to generate a v4 rsa key and flag it as encrypt
only,
it might be (?mis)taken in exactly the v3 context,
that the user intended it as an encrypt-only key,
and, for whatever reason, might prefer to do it this way and not deal
with subkeys
the only problem would be if it could be flagged this way *un-intentionally*,
which doesn't seem to be the case
with Respect,
vedaal
Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2
Free, ultra-private instant messaging with Hush Messenger
https://www.hushmail.com/services.php?subloc=messenger&l=434
Promote security and make money with the Hushmail Affiliate Program:
https://www.hushmail.com/about.php?subloc=affiliate&l=427