[horde] Re: Fwd: Re: Horde/IMP and smime
LALOT Dominique
lalot at univ-aix.fr
Thu Mar 10 07:55:03 PST 2005
Jan Schneider a écrit :
>----- Weitergeleitete Nachricht von lalot at univ-aix.fr -----
> Datum: Wed, 09 Mar 2005 08:46:47 +0100
> Von: LALOT Dominique <lalot at univ-aix.fr>
>Antwort an: LALOT Dominique <lalot at univ-aix.fr>
> Betreff: Re: [horde] Re: Horde/IMP and smime
> An: Jan Schneider <jan at horde.org>
>
>I need time to understand better CVS. I've rsync last night. Then I'll
>make a separate config for CVS.
>
>Jan Schneider a écrit :
>
>
>
>>Zitat von LALOT Dominique <lalot at univ-aix.fr>:
>>
>>
>>
>>
>>>in smime.php line 212
>>>
>>> /* Try again without verfying the signer's cert */
>>> $result = openssl_pkcs7_verify($input, PKCS7_NOVERIFY, $output);
>>>
>>> if (($result === true) || ($result === -1)) {
>>>$ob->result = PEAR::raiseError(_("Message Verified Successfully but the
>>>signer's certificate could not be verified."), 'horde.warning'); }
>>>
>>>
>>>So if it's true or false : success!!. You can get rid of the else :-)
>>>
>>>
>>>
>>
>>
There is another problem:
If I read the file (message on our cyrus imap server):
/var/spool/imap/l/user/lalot/231.:
donc garanti à 40-bit. Il fonctionne sur les navigateurs IE 4 et supérieur,
Now, if I patch smime.php, and I produce the file before calling
pkcs7-vverify, and look at the file using the same vim under charset
iso 8859-1/15
donc garanti =E0 40-bit. Il fonctionne sur les navigateurs IE 4 et
sup=E9ri=^M
eur,^M
The file has been altered by a parser to produce quoted-printable
(argh..)...And as I told you before, the failed test is broken(The
message has been altered and not only the CA sign not verified)..
There should be no modification at all before calling pkcs-verify..
--
Dominique LALOT
Ingénieur Système Réseau CISCAM Pole Réseau
Université de la Méditerranée http://annuaire.univ-mrs.fr/showuser.php?uid=lalot
More information about the horde
mailing list