On 01/06/2008, John <compwhizii(a)gmail.com>
wrote:
The Point of the PGP sign is to verify that it
was indeed from the
sender and not modified. Anyone can spoof a sig.
I mean a PGP sig, but as an actual sig, not something at the top of
the email that serves only to annoy people.
PGP needs that line at the top to indicate where the verified text
begins. If PGP doesn't check exactly the same chunk of text that was
signed it'll fail to verify, sort of like how earlier in this thread
someone was complaining about a mail client that had added a single
space to an encrypted block of text which resulted in the whole message
being broken.