After takin' a swig o' grog, Homer belched out
this bit o' wisdom:
> Verily I say unto thee, that Chris Ahlstrom spake thusly:
>>> In article <Xg3il.511$Qc.368@xxxxxxxxxxxxxxxxxxxxxx>, Chris
>>> Ahlstrom <ahlstromc@xxxxxxxxxxxxxxx> wrote:
>>>> It doesn't sound like Roy's posting style at all, though.
>>> It's signed with Roy's PGP key.
>>
>> So what?
>>
>> Well, I know now that Roy sent it. But the PGP key means nothing.
>>
>> Just about every part of a post can be faked, with the right ISP.
>
> From your post:
>
> OpenPGP Security Info
>
> Error - signature verification failed
>
> gpg command line and output:
> /usr/bin/gpg --charset utf8 --batch --no-tty --status-fd 2 -d
> gpg: Signature made Tue 03 Feb 2009 22:40:40 GMT using DSA key ID 74572E8E
> gpg: BAD signature from "Roy Schestowitz <sch[AT]danielsorogon.com>"
Are there any slrners who have a GPG plugin installed. I don't.
Truthfully, I didn't even consider the concept validating a usenet post
until now.
Plus, what's to prevent you from using your own PGP key, but posting as
someone else?
Now you have to actually compare the keys of two different messages
yourself.
Correct me if I'm wrong.
>> I don't like what Roy did; it sounded out-of-character. I hope it is
>> just an aberration. We'll see.
>
> It's quite understandable considering the harassment he's suffered from
> Gary.
Roy should just curse him out, vent a bit.
--
Blue paint today.
[Funny to Jack Slingwine, Guy Harris and Hal Pierson. Ed.]
|
|
