PGP signing

Allan Irving allanirving at
Mon Jun 9 13:57:48 UTC 2014

I have a question and this may be very, very stupid.

What I see at the moment, when a message is just signed, is a wrapper
consisting of the encryption type the public key uses and then the key
itself towards the bottom. How does GPG prevent someone from copying this,
spoofing an email address and then signing a message? Or does it not? In
this case, is simply signing a message even worthwhile in itself unless you
encrypt it?

Kind regards,

*This message, and any attachments to it, may contain information that is
privileged, confidential, copyrighted and exempt from disclosure under
applicable law. If the reader of this message is not the intended
recipient, you are notified that any use, dissemination, distribution,
copying, or communication of this message is strictly prohibited. If you
have received this message in error, please notify the sender immediately
by return email and delete the message and any attachments. *
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Discussion mailing list