Re: Cleartext Signatures


On Mon, Oct 10, 2005 at 03:30:29PM +0100, Ben Laurie wrote:

That mantra has shown to be a less than great idea recently, since it 
promotes interestingly obscure security holes, so I still would like to 
know what the correct behaviour is, and I'd like the I-D to accurately 
document that behaviour.


In that case, the empty line should be mandated, although distinguishing
between header data and base64 armor is quite straightforward and
unambiguous: headers always have colons in them, base64 armor never does.
Thus, it should be impossible to derail a correct parser with a carefully
constructed header, though of course, it's easier to write the parser if one
assumes an empty line before the base64 data.

-- 
Daniel

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Cleartext Signatures, (continued) Re: Cleartext Signatures, vedaal Re: Cleartext Signatures, Werner Koch Re: Cleartext Signatures, Ian G Re: Cleartext Signatures, Werner Koch Re: Cleartext Signatures, Ian G Re: Cleartext Signatures, Ben Laurie Re: Cleartext Signatures, Ian G Re: Cleartext Signatures, Jon Callas Re: Cleartext Signatures, Ian G Re: Cleartext Signatures, Ben Laurie Re: Cleartext Signatures, Daniel A. Nagy <= Re: Cleartext Signatures, Ben Laurie Re: Cleartext Signatures, David Shaw Re: Cleartext Signatures, Ben Laurie

Previous by Date:	Re: Cleartext Signatures, Ben Laurie
Next by Date:	Re: Cleartext Signatures, Ian G
Previous by Thread:	Re: Cleartext Signatures, Ben Laurie
Next by Thread:	Re: Cleartext Signatures, Ben Laurie
Indexes:	[Date] [Thread] [Top] [All Lists]