Thank you very much!
19 авг. 2016 г. 6:47 PM пользователь "Rich Salz via RT"
написал:
> For now we just added a comment to master, 1.0.2, 1.0.1 in the cms.pod and
> smime.pod files:
>
> Note that no revocation check is done for the recipient cert, so if that
> key has been
Thank you very much!
19 авг. 2016 г. 6:47 PM пользователь "Rich Salz via RT"
написал:
> For now we just added a comment to master, 1.0.2, 1.0.1 in the cms.pod and
> smime.pod files:
>
> Note that no revocation check is done for the recipient cert, so if that
> key has been
For now we just added a comment to master, 1.0.2, 1.0.1 in the cms.pod and
smime.pod files:
Note that no revocation check is done for the recipient cert, so if that
key has been compromised, others may be able to decrypt the text.
--
Ticket here:
Hello,
There is a missing CRL check on encrypting the messages using the
'cms/smime -encrypt' commands. Encrypting the message for the owner of a
compromised key is dangerous, so CRL check in these utilities will be
useful enough.
Thank you!
--
SY, Dmitry Belyavsky