Hi, Thanks to Ted I have created a very safe backup system that uses des3 encryption, and certificate encryption of the des3 key.
I was testing out the OpenSSL suite, and was trying to add a signature to the encrypted key file (to make sure it encrypting it). I am using the following command to encrypt/sign: openssl smime -encrypt -des3 -sign -nodetach -signer filename.pem filename.crt <infile >outfile Where filename.pem is the pem file of the signer (containing both private and public key) and filename.crt is the public key of the recipient. I am trying to verify the signature with: openssl smime -verify -CAfile filename.pem <infile >outfile Where filename.pem contains the complete public certificate chain of the signer. Now the last command looks good, and it claims verification is succesfull, but it outputs the decrypted message too. How is this possible? I didn't have ANY private key available to the last command... I hope someone can elaborate on this... Cheers, Rory ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
