Can you read this email? (second attempt)
C de-Avillez
hggdh2 at ubuntu.com
Thu Mar 9 03:00:48 UTC 2017
On Wed, 8 Mar 2017 20:00:34 -0600
Kevin Godby <godbyk at gmail.com> wrote:
> Hello, C.
>
> On Wed, Mar 8, 2017 at 7:11 PM, C de-Avillez <hggdh2 at ubuntu.com>
> wrote:
> > On Wed, 8 Mar 2017 18:24:24 -0600
> > Kevin Godby <godbyk at gmail.com> wrote:
> >> If we want to allow the signature attachments to come through, I
> >> can add those content types to the whitelist.
> >
> > I would suggest you should. Without the actual signature, there is
> > no way to verify it. Yes, there is an attachment that will state the
> > message is signed, but not with what key. Taking out the actual
> > signature completely defeats signing.
>
> I understand. But it's not entirely my call.
Just a question: is it a list admins call, or is it being imposed by
somebody else? I have not heard anything on the other lists I admin on
Ubuntu, though.
>
> Are there any problems with archiving signed messages? How do other
> Ubuntu lists handle them?
None that I know of. A PKCS7 signature will add around 7KB to the
message size; a PGP signature will (normally) add less than 1K.
..C..
More information about the ubuntu-doc
mailing list