On Sat, 21 Jul 2007 00:25:54 +0200 "Dr. Stephen Henson" <[EMAIL PROTECTED]> wrote:
> On Fri, Jul 20, 2007, Goetz Babin-Ebell wrote: > > > Hello, > > > > --On Freitag, Juli 20, 2007 14:49:54 +0000 nobody > > <[EMAIL PROTECTED]> wrote: > > > > [...] > > >Then I exported it in pkcs12 format and imported it into Internet > > >Explorer and Thunderbird. I've sent encrypted and signed mails with > > >Thunderbird and Outlook, they verify and decrypt fine at the other > > >end but neither Outlook nor Thunderbird ask for a password when I'm > > >creating or reading mails! How do I make sure unauthorised people > > >can't use this cert? > > > > Tell your program you use to send mails that it should protect > > imported key data with a pass phrase. > > How to do that is outside the scope of this list. > > (In Thunderbird it is the master pass phrase, I don't care for > > Outluck...) > > > > > > With CryptoAPI (which includes Outlook) the certificate import Wizard > will have an option saying something like "enable strong key > protection" then when you are prompted for the security level you > have to set it to "high". Hi, I see this option when I import but I don't understand something more fundamental. Why doesn't the cert itself have any password protection? Is it because when I created it I specified the key password only to build the cert from the key? And the cert gets built with no protection? Thanks. > > Steve. > -- > Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage > OpenSSL project core developer and freelance consultant. > Funding needed! Details on homepage. > Homepage: http://www.drh-consultancy.demon.co.uk > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List openssl-users@openssl.org > Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
