On 07/11/2014 12:47 AM, Daniel Kahn Gillmor wrote: > Could you send me (privately) an encrypted and signed message with your > kmail instance? I don't care what it says, but leave the body as a > simple text/plain part -- no HTML formatting or attachments, and ask > kmail to sign/encrypt with PGP/MIME. Please encrypt it to my key > 0x0EE5BE979282D80B9F7540F1CCD2ED94D21739E9. > > I'll evaluate the structure and report back here on the list.
Samir sent me a PGP/MIME-encrypted message from:
User-Agent:
KMail/4.13.2 (Linux/3.15.4-1-ARCH; KDE/4.13.2; x86_64; ; )
and it is structured in exactly the same way as the other Kmail message
i reported. But enigmail is able to verify it, whereas the other one
was unverifiable.
It sounds like i need to go back to the original correspondent and
clarify their configuration to see if i can replicate this with
non-sensitive data.
interestingly, i'm looking at enigmail's PGP/MIME-encrypted messages,
and while they do bundle the signature directly into the encryption
layer, the cleartext of the PGP block looks like this:
D └┬╴multipart/mixed
E └─╴text/plain
I would have expected just:
D └─╴text/plain
Is there a reason that enigmail doesn't use the simpler structure? the
multipart/mixed seems like a bit of unnecessary cruft around the message.
Thanks Samir for your quick responses!
--dkg
signature.asc
Description: OpenPGP digital signature
_______________________________________________ enigmail-users mailing list [email protected] To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
