[Tickets #3481] Allow both PGP and/or S/MIME verification
bugs@bugs.horde.org
bugs at bugs.horde.org
Wed Mar 1 21:32:34 PST 2006
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/?id=3481
-----------------------------------------------------------------------
Ticket | 3481
Updated By | Michael Slusarz <slusarz at mail.curecanti.org>
Summary | Allow both PGP and/or S/MIME verification
Queue | IMP
Version | HEAD
-State | New
+State | Feedback
Priority | 1. Low
Type | Enhancement
Owners |
-----------------------------------------------------------------------
Michael Slusarz <slusarz at mail.curecanti.org> (2006-03-01 21:32) wrote:
> no email client can handle a PGP and smime signed message - it makes
> no sense at all - if you do multiple signing it has to be either PGP
> or SMIME not both
I share the same concerns. According to the RFCs, any multipart/signed part
must contain a 'protocol' parameter. And this protocol parameter must be
either PGP or S/MIME, not both. The only example I can think of would be as
follows:
multipart/signed - PGP
[pgp header data]
multipart/signed - SMIME encryption
[data]
[end] multipart/signed - SMIME
[end]
this message would be completely pointless since there is no reason to
encrypt an already encrypted message (or sign an already signed message,
etc.) Anyway, if we can't handle this data then this is an issue e.g. Bug
1866 anyway.
More information about the bugs
mailing list