1997-10-19 - Re: Revealing individual messages.

Header Data

From: nobody@REPLAY.COM (Anonymous)
To: cypherpunks@toad.com
Message Hash: b09ccf55234642a6fc6708013852d5f421682a05c9b6d8113ad896ad99639ba8
Message ID: <199710192127.XAA23564@basement.replay.com>
Reply To: N/A
UTC Datetime: 1997-10-19 21:42:27 UTC
Raw Date: Mon, 20 Oct 1997 05:42:27 +0800

Raw message

From: nobody@REPLAY.COM (Anonymous)
Date: Mon, 20 Oct 1997 05:42:27 +0800
To: cypherpunks@toad.com
Subject: Re: Revealing individual messages.
Message-ID: <199710192127.XAA23564@basement.replay.com>
MIME-Version: 1.0
Content-Type: text/plain

Bill Stewart wrote:

> If you're concerned about Bad Cops planting forged messages on people,
> this won't help - it's easy for them to forge unsigned information also.
> After all, the PGP source code is open, so Bad Cops can add code to
> set the timestamp/sender/etc themselves.  Or they can ignore code,
> and just set their system clock appropriately.

  BC's can also plant secret keys on your machine, along with messages
forged using those keys.
  It is a good idea to keep badly forged messages on your machine, as 
well as badly forged keys. There are many ways to manipulate files and
emails so that discrepancies exist. e.g. - messages with a time-stamp
later than the file date; replies with an earlier time-stamp than the
original message; changing fingerprint on the same key.