> From: [EMAIL PROTECTED]
> Date: Fri, 5 Mar 1999 15:09:45 -0600
>
> A german group wishes to have all outgoing emails
> PGP signed with the sites public key. Or if possible,
> have each users email automaticly signed with each users
> public key. An automated way for assigning a key to each
> user would be needed.
>
> A key signature from the host would be okay.
> A key signature from each user would be ideal if it is
> practical.
>
> Does anyone have any tips for how to implement this?
>
> How would one automaticly PGP sign each outgoing email
> with the sites key?
The problem with any automatic signing scheme is that the password to get to
the private key needs to be saved somewhere. This makes any attempt to do
this in the MTA suspect, which is why mine is signed in my MUA.
Having said that, however, you can force all outgoing mail to be sent to an
alias using virtual domains with an entry something like this:
echo ':signme' > /var/qmail/control/virtualdomains
and then have a script in /var/qmail/alias/.qmail-signme-default which does
the signing and then sends the message on it's way (via another instance of
qmail, possibly). If you have all your mail going through a firewall, this
configuration should be even easier.
Of course, I haven't actually done this, but it should work.
Chris
--
Chris Garrigues Deep Eddy Internet Consulting
+1 512 432 4046 609 Deep Eddy Avenue O-
http://www.DeepEddy.Com/~cwg/ Austin, TX 78703-4513
My email address is an experiment in SPAM elimination. For an
explanation of what we're doing, see http://www.DeepEddy.Com/tms.html
Nobody ever got fired for buying Microsoft,
but they could get fired for relying on Microsoft.
PGP signature
