severity -1 wishlist
thanks
On Thu, 31 Aug 2023, Lee Garrett wrote:
> currently, when using Thunderbird to send OpenPGP/MIME signed mails to
> d-d-a, the mail gets silently blackholed (#1050906). It seems like the
> reason is that there is a small piece of text before the actual
> MIME-encoded data:
>
> "This is an OpenPGP/MIME signed message (RFC 4880 and 3156)"
>
> Would be nice if the tool in question could just truncate the unsigned bits
> instead and accept the mail, assuming there's a valid signature.
The problem there is that we would break DKIM or oversigning of the mail
message if we stripped that out. [It also adds a whole bit of
complicated code to the signature verification tool which is likely to
be wrong.]
The real fix is for thunderbird to stop adding unsigned text before the
actual mime encoded data. It doesn't add any value whatsoever. [It's one
of the only e-mail clients which does this that I'm aware of.]
--
Don Armstrong https://www.donarmstrong.com
Thanks be to God, that he gave me Stubbornness, when I know I am right.
-- John Adams (Letter to Edmund Jennings, 27 September 1782)
