Frank Cox wrote:
On Tue, 28 Oct 2008 13:49:36 -0500 "Mikkel L. Ellertson" mikkel@infinity-ltd.com wrote:
I can not "prove" that an unsigned message did not come from me, but I would hope an unsigned message posted to the list would cause people to take a closer look at it.
Wouldn't an examination of the message headers accomplish much the same thing? Assuming that the "imposter" isn't using the same mailserver as you are, of course.
It should. Unfortunately, too many people have a problem determining where the real headers end, and the fake headers begin. I have run into people that don't even look past the list server information to see where the list server received the message from... (All your messages came from <something>.redhat.com.) How these same people manages to get things set up to verify an e-mail signature is a mystery to me - maybe someone sets it up for them?
Mikkel