On Wed, Aug 31, 2005, Jason Haar wrote: > > No - that's not it. I thought of that and so sent myself the email. As > such it's encrypted with my private key + my public key (i.e. I am Bob > and Alice) - so that can't be it. It's as though it has encrypting > rights but not decrypting rights. However, I've checked the extendedkey > options and that's not the case - they're not even mentioned - it's a > cert that can do S/MIME - that's it. Thunderbird is 100% happy, Outlook > is happy enough sending with it - just not reading. I also made sure my > public key was associated with a Contacts entry for myself (that's how > Outlook tracks public keys) - so it should have all it needs to do the job. >
Where was the private key used created? Was it generated under CryptoAPI or imported as a PKCS#12 file from an external source? Due to various deficiencies in the internal format for Windows private keys there are some which it can use the public key but not the private key because it can't be represented in its format. An example if if the two primes are of different size. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]