Dr. Stephen Henson wrote:
By default the PKCS#12 files OpenSSL creates should be key exchange keys
unless you supply the -keysig command line argument.
I
Groan! Well spotted Steve! It appears we scripted calls to openssl with
the -keyex option when making certs (it was specifically to stop
On Fri, Sep 02, 2005, Jason Haar wrote:
Dr. Stephen Henson wrote:
Outlook can send digitally signed emails - and receive - just fine. It
can send encrypted emails that can be read by Thunderbird, but it can't
decrypt them - whether sent by itself or by Thunderbird.
I'm sure it's a
I am having difficulty getting Outlook to read S/MIME encrypted emails,
and I'm wondering what's wrong.
We have an internal PKI, and I have created a signed cert that can be
used for S/MIME. Thunderbird happily sends and receives signed and
encrypted emails with it.
Under Windows (which
Richard Levitte wrote:
Jason Haar writes:
Under Windows (which trusts the CA), Outlook is happy to associate
the cert with digital signing, and can send both signed and encrypted
emails. However (and here's the shocker) *IT CAN'T READ THE SENT
ITEMS COPY OF THE EMAIL IT JUST SENT*
Stupid
In message [EMAIL PROTECTED] on Wed, 31 Aug 2005 07:11:28 +1200, Jason Haar
[EMAIL PROTECTED] said:
Jason.Haar Richard Levitte wrote:
Jason.Haar
Jason.Haar Jason Haar writes:
Jason.Haar
Jason.Haar ... *IT CAN'T READ THE SENT ITEMS COPY OF THE EMAIL
Jason.Haar IT JUST SENT*
Jason.Haar
On Wed, Aug 31, 2005, Jason Haar wrote:
No - that's not it. I thought of that and so sent myself the email. As
such it's encrypted with my private key + my public key (i.e. I am Bob
and Alice) - so that can't be it. It's as though it has encrypting
rights but not decrypting rights.
Dr. Stephen Henson wrote:
Where was the private key used created? Was it generated under CryptoAPI or
imported as a PKCS#12 file from an external source?
It was created using OpenSSL - turned into a p12 and imported.
Due to various deficiencies in the internal format for Windows private
On Wed, Aug 31, 2005, Jason Haar wrote:
The other thing is that I can use Outlook to send an encrypted email to
myself, then access that mailbox using Thunderbird (with the same cert)
- and Thunderbird reads it fine. So Outlook must have successfully used
the private key to do the