Thomas Dalton wrote:
On 01/06/2008, John compwhizii@gmail.com wrote:
The Point of the PGP sign is to verify that it was indeed from the sender and not modified. Anyone can spoof a sig.
I mean a PGP sig, but as an actual sig, not something at the top of the email that serves only to annoy people.
PGP needs that line at the top to indicate where the verified text begins. If PGP doesn't check exactly the same chunk of text that was signed it'll fail to verify, sort of like how earlier in this thread someone was complaining about a mail client that had added a single space to an encrypted block of text which resulted in the whole message being broken.