Hello,
I just got myself a Thawte freemail 2048-bit key.
You got a Thawte freemail *certificate* that contains a copy of *your* key. You supplied the key. Thawte supplied the certificate.
> I have enabled
signing and encryption in mozilla mail agent. I need some more info like:-
(a) what do I post on my website for anybody to securely contact me? I can see a SHA1 fingerprint and an MD5 fingerprint.
You post the certificate.
(b) Does the 2048-bit key pose a problem for those using 1024-bit capable software? ie am I ahead of times?
All the major S/MIME email software handles 2k bit keys, AFAIK. Netscape & mozilla S/MIME clients have always handled 2k bit keys (subject to export control constraints back in the 1990s)
(c) I registered my thawte key using one computer, but I may use more than one computer. How do I use the same key across various computers?
You export your private key and certificate in a .p12 file, and then import it on whatever computers you wish. Alternatively, you put it into a hardware crypto device and carry that with you.
(d) is this (cert) something that can be used to filter out junk/spam/flame mail too?
Not at this time. Julien has proposed that if people routinely rejected all signed email, and only accepted signed email, that would kill spam, and I believe that would work, but not enough people use certs yet.
-- Nelson B
_______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
