-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Anthony,

On Fri, 23 Jul 2004 15:29:38 -0400, Anthony Toft wrote:

> I use a sig at work, but not at home, due to the difficulty in propogating the public key.

Eh?  Are you talking about PGP?  Why not send your public key to one of the keyservers, and they pass it
around themselves.  This is the way PGP has worked for most of its life...

> There are also some applications where an outgoing message _needs_ to be modified, in a legal or medical
setting for example where to cover the company's rear they add the whole "if it ain't for you don't read it"
footer, even though in this case a digital signature would be very useful (electronic legal document delivery,
electronic scripts etc)

Yes, but if you use the classic PGP form where the signature is included in the body of the message, the part
of the message is delimited and can be checked as usual.  Any "This message isn't what our lawyers would have
said" disclaimer will be beyond the signed-area (and the signature) and so doesn't interfere.

That's what this message should look like, by the way, with the PIClist trailer outside the signed part.

Cheers,

Howard Winter
St.Albans, England
PGP Public Key Fingerprint= C8 2B DE DE E5 CE 71 4D  B1 6C BF 21 D4 A2 A8 0D

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i OS/2 for non-commercial use
Comment: PGP 5.0 for OS/2
Charset: cp850

wj8DBQFBAZn8Zum5lbOiWpsRAv2tAJwPRkFap540twVdm1jix6HA1E8UugCfYWzD
b8m6l0FIekKZPRf3POl58MQ=
=II4A
-----END PGP SIGNATURE-----

--
http://www.piclist.com#nomail Going offline? Don't AutoReply us!
email listserv@mitvma.mit.edu with SET PICList DIGEST in the body