My email address is brian@lorf.org. My friend Ian's is ian@lorf.org. gnupg's
recipient flag seems to misbehave when I specify Ian, maybe because his address
is a substring of mine.
$ echo blah > blah
$ gpg -e -r ian@lorf.org blah
$ gpg -d blah.gpg
You need a passphrase to unlock the secret key for
user: "Brian Lewis <brian@lorf.org>"
2048-bit ELG-E key, ID CD150768, created 2008-05-20 (main key ID 56A8F0ED)
gpg: encrypted with 2048-bit ELG-E key, ID CD150768, created 2008-05-20
"Brian Lewis <brian@lorf.org>"
blah
So I said to encrypt to ian@lorf.org, but it encrypted to brian@lorf.org. There
are lots of ways this could be abused, so it seems pretty bad.