-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
____/ Homer on Thursday 30 Jun 2011 13:24 : \____
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Verily I say unto thee, that Roy Schestowitz spake thusly:
>> ____/ Homer on Thursday 30 Jun 2011 00:34 : \____
>>> Verily I say unto thee, that Kari Laine spake thusly:
>>>> On 06/29/2011 05:37 PM, Hadron wrote:
>>>
>>>>> Wow. You still havent set your sig properly.
>>>>
>>>> Can we now fix this my sig once and for all . What's wrong with it?
>>>> I see it correctly in my ThunderBird. Could it be that GPG signing
>>>> somehow destroys it for other readers.
>>>
>>> Yes, because the Enigmail plugin for Thunderbird is dash-escaping
>>> your signature delimiter, thus invaldating it. You need to set the
>>> GPG command to include "--clearsign --not-dash-escaped" in your
>>> Enigmail preferences:
>>>
>>> http://kb.mozillazine.org/Plain_text_e-mail_-_Thunderbird#Flowed_format
>>
>> Hmmmm... KNode has no place to enter additional options like these.
>
> Just to clarify, the above is a workaround for Thunderbird's Enigmail
> plugin, as it (and KNode) incorrectly handles PGP signing of messages
> that contain a signature block. However, unfortunately the workaround
> also breaks the standard.
>
> RFC 3676 section 4.3 "Usenet Signature Convention", defines the block
> as being delimited with "a line consisting of DASH DASH SP", but 4880
> section 7.1. "Dash-Escaped Text" (the OpenPGP Message Format) demands
> that any line beginning with a dash "is prefixed by the sequence dash
> '-' (0x2D) and space ' ' (0x20)", since the signature delimiter might
> interfere with the PGP signature parser, and results in the delimiter
> for the signature block being invalidated. Personally I don't see why
> dash escaping is necessary, as the PGP signature delimiter is defined
> as five consecutive dashes, so anything other than that should not be
> a problem, but apparently legacy implementations of PGP have "issues"
> with it. GPG remains unaffected, which is why it provides the option:
> "--not-dash-escaped".
>
> There are six ways to deal with this apparent contradiction:
>
> 1. Don't PGP sign messages containing a signature block
> 2. PGP sign messages, but don't include a signature block
> 3. Interpret "- -- " as a signature delimiter (as Thunderbird does)
> 4. PGP sign messages using MIME instead of inline
> 5. Break the standard with the "--not-dash-escaped" option
> 6. Only sign the main message body, excluding the signature block
>
> Option 6 is what I do with slrn. Thunderbird, KNode and other clients
> prefer option 3, but it's not a formal standard and isn't universally
> implemented, so many clients will interpret the results as not having
> a signature block at all. Option 5 /should/ work for any client using
> GPG, but again it's not a standard, indeed it breaks the standard, so
> it's not recommended unless you have no other option. And option 4 is
> useless for text-only Usenet groups, as attachments are blocked. This
> only leaves omitting one or the other type of signature, or using the
> method that doesn't PGP sign the signature block, which unfortunately
> isn't an option with the vast majority of clients.
>
> So basically, switch to slrn.
>
> http://slrn.sourceforge.net/documentation.html
> http://slrn.sourceforge.net/macros/gnupg-1.6.6.sl
> http://tools.ietf.org/html/rfc4880#section-7.1
> http://www.ietf.org/rfc/rfc3676.txt
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2.0.17 (GNU/Linux)
>
> iEYEARECAAYFAk4Max0ACgkQxdcNWr9DbsmiqgCfZy03t635rgi4XzpqihNnNVh7
> T+8AnjUV0OsavbE545vRCUhuXntRV9We
> =b/Eh
> -----END PGP SIGNATURE-----
Another option is just never to sign, as I did around 2005-2006 in COLA.
I was not PGP-signing until trolls started to do their identity forging, having the
desired effect of disrupting the group.
Minor point about KNode in KDE4 (not KDE3, IIRC): there is no way to sign _by default_. I
use alt+t+p to quickly toggle the option, mouselessly, for each single message.
- --
~~ Best of wishes
Dr. Roy S. Schestowitz (Ph.D. Medical Biophysics), Imaging Researcher
http://Schestowitz.com | GNU/Linux administration | PGP-Key: 0x74572E8E
Editor @ http://techrights.org & Broadcaster @ http://bytesmedia.co.uk/
GPL-licensed 3-D Othello @ http://othellomaster.com
Non-profit search engine proposal @ http://iuron.com
Contact E-mail address (direct): s at schestowitz dot com
Contact Internet phone (SIP): schestowitz@xxxxxxxxx (24/7)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAk4MdV0ACgkQU4xAY3RXLo7RTQCdG5Ubutcelk4awBEfG2ebCxSJ
FvwAn0s1n9m1jKu+1rF1PuNRbnQVyJ3C
=6pRL
-----END PGP SIGNATURE-----
|
|
