Authenticated newgroup/rmgroup messages (was Re: It's official - David Lawrence is running for the Kook of the Month)

[David Guntner]

-----BEGIN PGP SIGNED MESSAGE-----

In article <qumd93y...@cyclone.Stanford.EDU>,
Russ Allbery <r...@cs.stanford.edu> wrote:
>
>The forged newgroups are a real problem, since as yet there is no real way
>to authenticate newgroup messages. Sites which automatically honor David
>Lawrence's newgroup messages (which are almost all sites on Usenet) will
>therefore create the newsgroups on the basis of the forged messages even
>though the groups are not "real."

Actually, there *is* a system in place now to authenticate newgroup
and rmgroup messages. The news administrator needs to put in a small
patch (I was able to do it in about 15 minutes, but I was doing it
very carefully :), and doesn't require a recompilation (even though
the notes tell you to do a make after putting the patch in place). It
does require that PGP be installed on the news system.

Check out ftp://ftp.uu.net/networking/news/misc/pgpcontrol/README.html
for details.

--Dave

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBMaI0uw0Aj0bAuAXFAQHhWwP/ah/pYNAV850n7GJkahGEyeYj5V28vwrR
a7z86XaGDgNM109vjP12DQQ+kama6Uval/zrMKZ8P8fYKWKKCauFU5v8GjfGz8Oc
7DrHKQa4eQXsDpDCHgh6krGRx0CnZs0nboBz8zb+O/mu49S2jaZYZQStuftjI0w6
opsyosexd/M=
=udLy
-----END PGP SIGNATURE-----

--
Concerned about your message security? Read alt.security.pgp!
David Guntner Internet: dav...@netcom.com Finger or key server
Vicksburg, MS GEnie: Just say NO! for PGP Public key
GO d? s:+ !a C++(++++) US(++) P+ E- W+ N++(+++)@ !o K w(---) M-- V-- PS
PE Y+ PGP++ t+ 5++ X R tv+ b+ DI+ !D G e/* h r* y+(*)