crypto flaw in secure mail standards

Riad S. Wahby rsw at
Sun Jun 24 00:51:02 EDT 2001

Derek Atkins <warlord at MIT.EDU> wrote:
> The problem is not at all with the crypto.  The problem is with the
> integration of the crypto with applications like e-mail.

In this spirit, I have produced a patch for Mutt that adds an option
to include the To:, From:, CC:, and Subject: headers at the end of PGP
signed messages.

This patch happens to interact somewhat with a previous patch I
produced that allows Mutt to optionally send PGP messages as
content-type text/plain for broken mail clients like nmh and Eudora,
so I have integrated both into a single patch.  

It applies against mutt-1.2.5i; I haven't tested it against others,
but I suspect it should work fine.

Riad Wahby
rsw at
MIT VI-2/A 2002


The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at

More information about the cryptography mailing list