Sorry to bring up an old issue. Openssl's smime verification doesn't work on binary files. Even if you sign a unix text file with the "-binary" option, the verification of this signed file will never succeed. In 2004 Robert Reitenbach submitted a patch that resolved this issue and also allowed signatures in DER format. Binary signatures in smime messages are used by some AS2 transfer programs like Inovis BizManager.
This old patch still applies to openssl 0.9.8L without much effort. Was there a reason why it was never included in openssl 0.9.8? Here's a link to Robert Reitenbach's ticket with the patch attached. http://rt.openssl.org/Ticket/Display.html?id=828&user=guest&pass=guest ________________________________ This communication is intended only for the party to whom it is addressed, and may contain information, which is privileged or confidential. Any other delivery, distribution, copying or disclosure is strictly prohibited and is not a waiver of privilege or confidentiality. If you have received this communication in error, please notify the sender immediately by return electronic mail and destroy the message. NOTICE: Although this email and any attachments are believed to be free of any virus or other defect that might affect any computer system into which it is received and opened, it is the responsibility of the recipient to ensure that it is virus free and no responsibility is accepted by Exchange Solutions Inc. for any loss or damage arising in any way from its use.
