don't use encrypt to self (Re: legislating the impossible?)

T Bruce Tober octobersdad at reporters.net
Mon, 6 Jul 1998 11:12:21 +0100 

In message <m0yt75M-001kv7C@mail.alien.bt.co.uk>, David Parkinson
<dparkins@alien.bt.co.uk> writes
>Not being a PGP user I'm happy to be corrected, but I assume "encrypt
>to self" means you add your own email address to the list of recipients.
>This means that the message header includes a field that you are
>able to decrypt - and hence recover the symmetric session key that
>protects _that_ message.

According to the pgp help for the preference item, which is called
"Always encrypt to default key":

"When this check box is selected, all the e-mail messages or file
attachments you encrypt with a recipient’s public key are also encrypted
to you using your default public key. It is useful to leave this setting
turned on so that you have the option of decrypting the contents of any
e-mail or files you have previously encrypted."

I've encrypted the above with Adam Back's key (I don't have your's)
below, so supposedly he will be able to decrypt it and if I check my
copy of this message I should also. I'll let you know below.

-----BEGIN PGP MESSAGE-----
Version: PGPfreeware 5.5.3 for non-commercial use <http://www.pgp.com>
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=onFI
-----END PGP MESSAGE-----

Yes, I just checked and I can open it.

tbt -- Whose book on Net security issues and solutions for SMEs is now
                               available from 
<http://www.bloor.co.uk/prodserv/html/bloor_research_-_internet_secu.html>

-- 
|Bruce Tober, <octobersdad@reporters.net>, <http://www.crecon.demon.co.uk>   |
|Birmingham, UK, EU +44-121-242-3832 Freelance PhotoJournalist - IT, Arts,   |
|       Business, etc. Also website content consultancy and development.     |