Dr S N Henson wrote: > What about weak encryption using 40 bit RC2? Presumably this will still > be supported. I propose that Mozilla NOT support generating RC2/40 encrypted S/MIME messages. This cipher can be broken with negligible cost, its use gives senders an entirely false sense of security. For interoperability, it would be reasonable to support decryption of RC2/40 S/MIME messages, but it would be best if Mozilla did not show the user a lock icon in this case.
smime.p7s
Description: S/MIME Cryptographic Signature
