J. Wren Hunt wrote:
Ian G wrote:
|
|<snip> I recently installed a good cert into my Thunderbird and I
| still cannot send out signed or encrypted email using S/MIME (I forget
| why).
|
Are you being facetious here?
Nope, I tried to get it going a couple of weeks
ago, and the interface has too many barriers in it.
Here's some quick gumbie notes dashed off, as I
try again.
For encryption, just now I tried again, and I
may have figured out the problem: it requires
me to select a certificate, which wasn't
obvious the first time I went through the various
dialogues; it should just automatically select
the one cert that is there (actually it should
automatically create, sign and select a cert on
install time .. but that's another debate).
Now that I've selected the cert, it gives me
two options on the Account Settings dialog:
Never use encryption, and
Required.
Well, neither of those are going to work and
when I saw that the first time I was mystified
why such a choice existed. What's wrong with
encrypt when possible;
encrypt to whom possible?
So it now occurs to me that this cannot be
all there is to it, and clicking on this email's
Security padlock reveals ... recipient certs,
which is a big suprise! Nice.
But, in Options/Security I found a menu that
gave options to encrypt and to sign. They need
to be on the chrome somewhere, imho.
So I guess the thing is to set the default in
Edit / Account Settings / [EMAIL PROTECTED] /
Security / Encryption to say Never and then to
override that by clicking the Options/Security/
Encrypt each time?
In summary,
1. it should create and select a cert on
install.
2. it should select or offer selection when
a new signed cert on install.
3. it should encrypt when it can, and
offer an option to encrypt partially
when it can't encrypt to all.
4. there should be a big fat SEND&SIGN
button next to Send.
5. there should be a "valid" indicator
next to each of the recipients, as
well as an "no cert" for those who
aren't known.
All, IMHO, second attempt impressions.
For signatures, that's less interesting to me,
but I'll try to sign this email, and if that
works, it will be because the Cert was not
selected.
6. It would be nice if the From bar where
to go blue like Firefox. The little
pen (is it?) at the bottom right is too
small to notice.
7. Is there any way to attach a statement
to the signature indicating what it
means? What does it mean?
iang
--
News and views on what matters in finance+crypto:
http://financialcryptography.com/
_______________________________________________
Mozilla-security mailing list
Mozilla-security@mozilla.org
http://mail.mozilla.org/listinfo/mozilla-security
