From owner-freebsd-isp Wed Apr 19 16:15:57 2000 Delivered-To: freebsd-isp@freebsd.org Received: from inet03.citec.qld.gov.au (inet03.citec.qld.gov.au [203.5.10.10]) by hub.freebsd.org (Postfix) with ESMTP id DA22937BD3B for ; Wed, 19 Apr 2000 16:15:50 -0700 (PDT) (envelope-from sgcccdc@citec.qld.gov.au) Received: by inet03.citec.qld.gov.au; id JAA02896; Thu, 20 Apr 2000 09:15:28 +1000 (EST) Received: from guru.citec.qld.gov.au( 147.132.20.47) by inet03.citec.qld.gov.au via smap (V2.0) id xma029681; Thu, 20 Apr 00 09:13:35 +1000 Received: from localhost (sgcccdc@localhost) by guru.citec.qld.gov.au (8.9.3/8.9.3) with ESMTP id JAA51928; Thu, 20 Apr 2000 09:13:28 +1000 (EST) (envelope-from sgcccdc@citec.qld.gov.au) X-Authentication-Warning: guru.citec.qld.gov.au: sgcccdc owned process doing -bs Date: Thu, 20 Apr 2000 09:13:27 +1000 (EST) From: Colin Campbell To: Jim Flowers Cc: Matt Heckaman , FreeBSD-ISP Subject: Re: credit card handling. In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, On Wed, 19 Apr 2000, Jim Flowers wrote: > Just install the pgp port and read the documentation. From what I recall > you pipe your email output to pgpe and from their to sendmail having sent > the public key to the recipent machine previously. Isn't this round the wrong way? By encrypting with your private key anyone with access to your public key can decrypt it. Would it no be better to use the public key of the recipient so that only they can decrypt the message? My understanding of PKI is: - use your private key for signing things to prove who you are. Anyone can use your public key to verify the identity of the sender. - use the recipient's public key for encryption since only they can decrypt the message Colin To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message