"Don't trust anyone without the passcode." "Ok, but that's not the passcode..."
For years now, I've been cryptographically signing my outgoing e-mails. This serves a variety of purposes, the most direct one being that a person can always check that I authored a message, without question. (If more people used crypto then social-engineering attacks and phishing wouldn't work, but that's for another post.)
The point is, I sign messages regularly. I tell people my patterns, and then say to be suspicious of things outside this pattern. So it was with a great deal of embarrassment that I discovered that my configuration went bad at some point and a lot of messages for the past several months were not valid.
Almost as disappointing is the fact that *no-one noticed* that my long-standing habits had been broken...
The point is, I sign messages regularly. I tell people my patterns, and then say to be suspicious of things outside this pattern. So it was with a great deal of embarrassment that I discovered that my configuration went bad at some point and a lot of messages for the past several months were not valid.
Almost as disappointing is the fact that *no-one noticed* that my long-standing habits had been broken...