Raph: At 4:49 PM 2/14/96, Raph Levien wrote: > MOSS is mostly cryptographically sound. In fact, MOSS is too flexible. In most circumstances, signatures should be performed before encryption. MOSS allows people to sign ciphertext, by putting a multipart/encrypted inside a multipart/signed. The MOSS specification offers no warnings about this "feature." Russ