Re: [Djigzo users] modifying "from=<>"

Zitat von Martijn Brinkers : On 07/18/2016 09:59 AM, Stefan Günther wrote: Hi Martijn, our problem was, that one of our clients has a MS Exchange with the setting "Don't accept empty sender addresses". Therefore the notifcations weren't accepted. This also means

Re: [Djigzo users] Upgrade 2.10 to 3.05

Zitat von Martijn Brinkers : On 05/18/2016 03:33 PM, lst_ho...@kwsoft.de wrote: Hello, we are on the way from Djigzo 2.10.0-3 to 3.0.5 mostly to keep up with releases. The upgrade guide list a additional injection port 10027 needed for this release an i wonder why it

[Djigzo users] Upgrade 2.10 to 3.05

Hello, we are on the way from Djigzo 2.10.0-3 to 3.0.5 mostly to keep up with releases. The upgrade guide list a additional injection port 10027 needed for this release an i wonder why it is needed. Should mail injected there be passed through the djigzo gateway (again)? If yes, why not

Re: [Djigzo users] Exclude from encryption

Zitat von sree...@managed-me.com: Dear All, We have a domain for which encrypt mode has been set as mandatory. I would like to know whether it is possible to exclude an email from encryption based on its subject. I checked the configuration and saw that there is an option to encrypt

Re: [Djigzo users] prerequisite for encryption

Zitat von Matthias Henze : Hi, I had several discussions with other vendors of mail encryption gateways and all told me that I'm wrong. But today Ciphermail did some thing I've predicted and proved that I was right. This is what I think, please correct me if I'm

Re: [Djigzo users] Import CA certificates

Zitat von Matthias Henze : Hi, I've found no way to batch import CA certificates. Is there a way to do this on the command line? TIA Matthias With the correct format (.p7b) you can import many root CAs at once. A collection commonly used is here for example:

Re: [Djigzo users] issue just sending mail to localhost

Zitat von Jeremy Hansen : Remote mail works just fine. I’m trying to send mail to a local user on the localhost: echo test | mail -s Test test@localhost && tail -f maillog It looks like the response coming back from cipher mail is that it can’t find localhost: Feb

Re: [Djigzo users] CipherMail to use external PostgreSQL server

Zitat von Laz C. Peterson l...@paravis.net: Yes, all communication goes through encrypted tunnels. Our goal is to have high availability for all services running on databases, but PostgreSQL seems to be a tough nut to crack. Why?

Re: [Djigzo users] Internal relay host and LMTP

Zitat von Django [BOfH] dja...@nausch.org: HI Martijn, Am 29.06.2015 um 16:26 schrieb Martijn Brinkers: The problem is that Postfix has a large number of options. Oh yes, I know! ;) In all these years you are the first to request an option to change the protocol so we will need to

Re: [Djigzo users] CipherMail gateway 2.10 released

Zitat von Martijn Brinkers mart...@ciphermail.com: Hi, A new version of the CipherMail gateway 2.10 is released. Improvements/Changes * HTML parts are now scanned for PGP content [https://jira.djigzo.com/browse/GATEWAY-88] * PGP desktop/universal (now Symantec) proprietary partitioned

Re: [Djigzo users] Postfix+Ciphermail advanced config question

Zitat von Laz C. Peterson l...@paravis.net: Well, after some beating my head into the wall (that usually works), I’ve decided to just set up Ciphermail as a separate server again and set submission and smtps to proxy into Ciphermail’s smtp. A little hairy, but it works. The internal

Re: [Djigzo users] Security of the X-Djigzo-Info-* headers?

Hello, correct me if i'm wrong but i don't know any MUA which care about special X-Header at all, no? Regards Andreas smime.p7s Description: S/MIME Cryptographic Signature ___ Users mailing list Users@lists.djigzo.com

Re: [Djigzo users] What causes this?

Zitat von Martijn Brinkers mart...@djigzo.com: On 03/09/2015 02:40 PM, Sebastian Nielsen wrote: What causes this? See the attached EML file. The mail is duplicated (with duplicate MIME headers) into a attached file, when Djigzo validates the mail. What can cause such a “mishap”? This does

Re: [Djigzo users] Use of ECC Algorithms with Ciphermail?

Zitat von Martijn Brinkers mart...@djigzo.com: On 10/27/2014 03:45 PM, lst_ho...@kwsoft.de wrote: just curious but i would like to know if Ciphermail latest release is prepared to handle ECC algorithms instead of RSA/DSA according to the RFC 3278/5753?? I'm totaly aware that one needs a ECC

[Djigzo users] Use of ECC Algorithms with Ciphermail?

Hello, just curious but i would like to know if Ciphermail latest release is prepared to handle ECC algorithms instead of RSA/DSA according to the RFC 3278/5753?? I'm totaly aware that one needs a ECC PKI chain for this, but just to be sure if this is fully implemented... Regards

Re: [Djigzo users] Ciphermail/Djigzo with Exim?

Hello, i don't use Exim but basically Ciphermail is a content filter which speaks SMTP at its edges. With Postfix you have some additionally GUI features like inspecting the mail-queue or do some of the Postfix configuration at GUI level, but its all up to you if you need it or not. So

Re: [Djigzo users] java.security.KeyStoreException: DatabaseKeyStore not found

Zitat von Stefan Michael Guenther s.guent...@in-put.de: Hi, after installing some updates on a Ubuntu 10.0.4 LTS Djigzo (2.3.1-7) doesn't start anymore. Instead the log file contains the following errors: org.apache.avalon.phoenix.containerkit.lifecycle.LifecycleException: Component

[Djigzo users] Error with S/MIME certificate

Hello, we have one certificate from a customer which throws the following error and is therefore not usable for description: Error building certPath. Subject email address is not from a permitted subtree. Other certificates from the same company works fine and i have not yet find out what

[Djigzo users] Import PGP keys from E-Mail

Hello, we have set Import keys from e-mail in the global advanced settings for PGP, the rest of PGP settings are default. As of today we have no PGP key in the database and today i detected a mail which should have leaved a key behind. The header of the mail in question is:

Re: [Djigzo users] Import PGP keys from E-Mail

Zitat von Martijn Brinkers mart...@djigzo.com: On 07/02/2014 10:05 AM, lst_ho...@kwsoft.de wrote: we have set Import keys from e-mail in the global advanced settings for PGP, the rest of PGP settings are default. As of today we have no PGP key in the database and today i detected a mail which

Re: [Djigzo users] Import PGP keys from E-Mail

Zitat von Martijn Brinkers mart...@djigzo.com: On 07/02/2014 10:26 AM, lst_ho...@kwsoft.de wrote: Zitat von Martijn Brinkers mart...@djigzo.com: On 07/02/2014 10:05 AM, lst_ho...@kwsoft.de wrote: we have set Import keys from e-mail in the global advanced settings for PGP, the rest of PGP

[Djigzo users] Unhandled RuntimeException?

As of today we noticed some errors in the Djigzo log: 08 Mai 2014 15:40:28 | INFO Rebuilding trust anchor cache. (mitm.common.security.certpath.CertStoreTrustAnchorBuilder) [Spool Thread #1] 08 Mai 2014 15:40:28 | ERROR Unhandled RuntimeException.

Re: [Djigzo users] Unhandled RuntimeException?

Zitat von Christine christ...@christine.nl: On 08-05-14 16:05, lst_ho...@kwsoft.de wrote: As of today we noticed some errors in the Djigzo log: You didn't do an upgrade or something, I assume? dagdag Christine Not that i'm aware of ;-) I have now restared Djigzo to be sure everything is

[Djigzo users] Roadmap for DANE support?

Hello, i would like to know if there are any plans to get Djigzo fetching S/MIME certifiactes by DANE (https://datatracker.ietf.org/wg/dane/charter/) in the future? Regards Andreas smime.p7s Description: S/MIME Cryptographic Signature ___

[Djigzo users] Something to worry about??

Hello, today we found the following in the Djigzo log: 25 Nov 2013 16:24:30 | INFO checkSMIMESign state | MailID: ba75a1cc-d089-4ad0-82dd-841c436f82c7; Originator: x...@kwsoft.de; Sender: x...@kwsoft.de; (mitm.application.djigzo.james.mailets.Log) [Spool Thread #0] 25 Nov 2013

Re: [Djigzo users] Use expired cert/key pair for decryption

Zitat von Martijn Brinkers mart...@djigzo.com: On 10/08/2013 05:57 PM, lst_ho...@kwsoft.de wrote: Hello, today we had a problem that one customer send us encrypted mail with a certificate/key pair which was already expired. Therefore the encrypted data passed the Djigzo gateway to the

Re: [Djigzo users] Use expired cert/key pair for decryption

Zitat von Martijn Brinkers mart...@djigzo.com: On 10/09/2013 10:58 AM, lst_ho...@kwsoft.de wrote: Zitat von Martijn Brinkers mart...@djigzo.com: On 10/08/2013 05:57 PM, lst_ho...@kwsoft.de wrote: Hello, today we had a problem that one customer send us encrypted mail with a

[Djigzo users] Use expired cert/key pair for decryption

Hello, today we had a problem that one customer send us encrypted mail with a certificate/key pair which was already expired. Therefore the encrypted data passed the Djigzo gateway to the clients not able to handle it. As the certificate/key pair is still present it would be nice to get

Re: [Djigzo users] User trigger for *not* encrypting mail

Zitat von Christine Karman christ...@djigzo.com: On 06/05/2013 11:29 AM, lst_ho...@kwsoft.de wrote: Hello, is it possible or maybe will in the future to have a subject Trigger for not encrypting a mail even if it would be possible. We use Djigzo the way that all mail which can be encrypted

[Djigzo users] User trigger for *not* encrypting mail

Hello, is it possible or maybe will in the future to have a subject Trigger for not encrypting a mail even if it would be possible. We use Djigzo the way that all mail which can be encrypted (valid, trusted certificate available) will be encrypted and sometimes the recipients need a

Re: [Djigzo users] ETA for Java 7 enabled Djigzo?

Zitat von Martijn Brinkers mart...@djigzo.com: Hi Andreas, On 04/10/2013 11:30 AM, lst_ho...@kwsoft.de wrote: is it possible to give a aproximate date for releasing the Java 7 enabled Djigzo? We are in progress of deploying a new server and like to start with Java 7. An exact date is hard

[Djigzo users] ETA for Java 7 enabled Djigzo?

Hello, is it possible to give a aproximate date for releasing the Java 7 enabled Djigzo? We are in progress of deploying a new server and like to start with Java 7. Regards Andreas smime.p7s Description: S/MIME Cryptographic Signature ___

Re: [Djigzo users] Djigzo with zimbra

Zitat von Christine Karman christ...@djigzo.com: On 03/29/2013 05:27 AM, Blason rock wrote: Hi Folks, Wondering if anyone has ever tried integrating djigzo with zimbra? Does any one have a good write up on it? Yes, we've done that, and it works well as far as I know. I'll see if we have a

Re: [Djigzo users] Timed out waiting for signal from JVM

Is it possible that it is related to the CRL downloading. Most of the time we have something like this nearby: 05 Dez 2012 17:34:23 | WARN IO Exception downloading CRL. URI:

Re: [Djigzo users] Timed out waiting for signal from JVM

Zitat von Martijn Brinkers mart...@djigzo.com: On 12/05/2012 05:44 PM, lst_ho...@kwsoft.de wrote: Is it possible that it is related to the CRL downloading. Most of the time we have something like this nearby: 05 Dez 2012 17:34:23 | WARN IO Exception downloading CRL. URI:

Re: [Djigzo users] Timed out waiting for signal from JVM

Zitat von Martijn Brinkers mart...@djigzo.com: On 12/05/2012 06:03 PM, lst_ho...@kwsoft.de wrote: Zitat von Martijn Brinkers mart...@djigzo.com: On 12/05/2012 05:44 PM, lst_ho...@kwsoft.de wrote: Is it possible that it is related to the CRL downloading. Most of the time we have

Re: [Djigzo users] CA Key Length

Zitat von Phil Daws ux...@splatnix.net: Hello all, looking for a bit of advice as searches have not really reaped much. When we set up Djigzo's CA what would be the most client inter-operable settings to use; 2048 bits with SHA512 ? I have been led to believe that there have been issues

Re: [Djigzo users] CA Key Length

Zitat von Martijn Brinkers mart...@djigzo.com: On 08/06/2012 02:44 PM, Phil Daws wrote: Hello all, looking for a bit of advice as searches have not really reaped much. When we set up Djigzo's CA what would be the most client inter-operable settings to use; 2048 bits with SHA512 ? I have

Re: [Djigzo users] Subject and Signing

Zitat von Phil Daws ux...@splatnix.net: Hello, am seeing how to set up the S/MIME subject trigger to allow signing of messages independently from encrypting; is this possible ? I have created my domain, added my user, and installed my personal certificate. I set the Encrypt Mode to

Re: [Djigzo users] Script to add new users

Zitat von Perry Peeters p.peet...@deonet.nl: I'm in the process of adding 2000+ new users (all external recipients) and wondered if it is possible to run a script to do so. What I'm looking for is a script to add users using a csv format file with email-address and (static) password. Not

Re: [Djigzo users] Is it possible to encrypt without signing ?

Zitat von Yannick Grange ygra...@technip.com: Dear all, I would like to know if it's possible to configure Djigzo en encrypt emails without signing it. We would need that because using Company gateway certificate to sign, the sender email adress is not the same as the email adress inside the

Re: [Djigzo users] assigning certficates

Zitat von Perry Peeters p.peet...@deonet.nl: Further investigation learned that the certificate imported into Djigzo did not contain a private key. The way to create a Comodo certificate file in Mozilla Firefox: Edit / Preferences/ Advanced / Encryption / View Certificates / Backup All /

[Djigzo users] Many loglines for CRL related error

Hello found this today. Looks like a little bit too much logging or is there a real issue? 10 Feb 2012 22:45:01 | ERROR CRL could not be verified. Hash not correct (mitm.common.security.crl.PKIXRevocationChecker) [542503743@qtp-1820539437-132] java.security.SignatureException: CRL does

Re: [Djigzo users] Tagging incoming Mails

Zitat von Lars Gosebrink l...@gosebrink.de: Hello List, is it possible to set a tag of the status if a mail is signed or encrypted in the subject line for incoming mails so the end users can see if the mail was signed or encrypted? Examples: Subject: anything {signed with S/MIME}

Re: [Djigzo users] Problem with encryption and signing, and incoming mail is not decrypted

Zitat von Erki Naumanis erki.nauma...@just.ee: Hi. We have installed the Djigzo gateway and everything Works great if we do not try to encrypt and sign outgoing messages. It seems that Djigzo is signing and then encrypting the messages. Is that how it should be? And is there a way to do it

[Djigzo users] Delete old certificate/keys

Hello i have a bunch of expired certificates/keys and like to delete them in Djigzo. Some of them were automatically assigned to a user and are now not deleteable (no red cross). They can be deleted after opening the user -- signing certificate setting and simply closing it agian. The

Re: [Djigzo users] Checking the signature on receipt.

Zitat von matthiasdort room_djigzousermaill...@dotronik.net: Now I have again a fundamental question. Is it true that the gateway does not perform any signature verification on receipt? No, it does indeed perform verification and add some header about it's findings:

Re: [Djigzo users] Domain certificate instead of user certificates?

Zitat von Martijn Brinkers mart...@djigzo.com: On 10/31/2011 07:31 PM, Stefan Michael Guenther wrote: Hello, let' s think of the following scenario: Our client has 5 employees and uses Djigzo E1, E2, E3, E4, E5 His business contact hat 5 employess, too, but doesn't use an encryption

Re: [Djigzo users] Domain certificate instead of user certificates?

Zitat von Stefan Michael Guenther s.guent...@in-put.de: Hello, let' s think of the following scenario: Our client has 5 employees and uses Djigzo E1, E2, E3, E4, E5 His business contact hat 5 employess, too, but doesn't use an encryption gateway (encryption is performed by the email

Re: [Djigzo users] Notify about a successfully complete for sign check

Zitat von Martijn Brinkers mart...@djigzo.com: On 10/27/2011 08:29 AM, matthiasdort wrote: is there any possibility to notify the receiver for a signd mail about a successfully complete sign check? At the moment i can not find any adjustment to do that. How does the user konw anything

Re: [Djigzo users] Notify about a successfully complete for signcheck

Zitat von Martijn Brinkers mart...@djigzo.com: On 10/27/2011 09:25 AM, matthiasdort wrote: I guess something like a [Signed] tag in the subject to show the end user (internal recipient) that the message was signed and could be verified when hitting the Djigzo Gateway. Thank you Andreas,

Re: [Djigzo users] New release candidate of the Djigzo gateway available (version 2.3.1-5)

Zitat von Nancy Anthracite nanthrac...@earthlink.net: If we were slow on the trigger and did not apply the last update, do we need to apply that one before applying this one, or can we just apply this one? You can always apply simply the latest... Let me apologize in advance if that question

Re: [Djigzo users] Djigzo Error (java.io.EOFException)

Zitat von Martijn Brinkers mart...@djigzo.com: On 01/-10/-28163 08:59 PM, lst_ho...@kwsoft.de wrote: Recently we got the following in the Djigzo Log: 28 Sep 2011 20:44:00 | ERROR Error handling CRL. URI: http://x500.bund.de/cgi-bin/show_attr?cn=PCA-1-Verwaltung-07attr=crl

Re: [Djigzo users] force encryption problem

Zitat von Brad Triem b...@trinsictech.com: - Original Message - On 09/18/2011 06:27 PM, Brad Triem wrote: Appears that didn't work. Below is the snippet from the djigzo maillog: Sep 18 11:20:03 secure postfix/qmgr[9933]: DF40769B35A: from=u...@domain.com, size=1753, nrcpt=1

Re: [Djigzo users] Problems Starting Tomcat5

Zitat von John Preisach jpreis...@strongmail.com: Hello, I am a new user and just installed Djigzo 2.0.1 on a CentOS 5.5 system. Things seem to be fairly straight, except for an error that I have been beating my head against all day. Does anyone have any idea what might be going on here,

Re: [Djigzo users] Updated release candidate available (2.1.1-1)

Zitat von Martijn Brinkers mart...@djigzo.com: Hi, A new release candidate is available containing a couple of changes compared to the previous release candidate dated 27-07-2011. Already testing ;-) Thanks Andreas smime.p7s Description: S/MIME Cryptographic Signature

Re: [Djigzo users] Release candidate 2.1.1 available

Zitat von Martijn Brinkers mart...@djigzo.com: Hi, A new Djigzo Gateway release candidate (2.1.1) is available. http://www.djigzo.com/beta.html Release notes: Improvements * If a certificate was available for a recipient, a user object was always created for that recipient. The user is

Re: [Djigzo users] Release candidate 2.1.1 available

Zitat von Martijn Brinkers mart...@djigzo.com: On 01/-10/-28163 08:59 PM, lst_ho...@kwsoft.de wrote: Zitat von Martijn Brinkers mart...@djigzo.com: Hi, A new Djigzo Gateway release candidate (2.1.1) is available. http://www.djigzo.com/beta.html Release notes: Improvements * If a

Re: [Djigzo users] Release candidate 2.1.1 available

Zitat von Martijn Brinkers mart...@djigzo.com: On 01/-10/-28163 08:59 PM, lst_ho...@kwsoft.de wrote: Zitat von Martijn Brinkers mart...@djigzo.com: On 01/-10/-28163 08:59 PM, lst_ho...@kwsoft.de wrote: Zitat von Martijn Brinkers mart...@djigzo.com: Hi, A new Djigzo Gateway release

[Djigzo users] Problem with protected header

Hello we have a problem with a remote destination ditching encrypted mail because of the header included by Djigzo. They claim that according to RFC 3851 the S/MIME part must not include RFC822 headers. From what i read in RFC 5751 section 3.1 there is a standard format to protect

Re: [Djigzo users] Encryption: yes, signing: no. But why? [SOLVED]

Zitat von Stefan-Michael Guenther s.guent...@in-put.de: Hi, the point was, that in the global settings Locality has to be External, while in our setting it was Internal. This obviously forces Djigzo to treat every recipient as external. The only exception are those users, that were added

Re: [Djigzo users] Autmatic backup as a cronjob?

Zitat von Stefan-Michael Guenther s.guent...@in-put.de: Hi, we all know, that a manual backup by using the Backup manager isn't the most reliable backup solution. Is it possible to backup all necessary files and directories with a script called by a cronjob? The Backup manager is able to do

[Djigzo users] Certificate not extracted when recipient has no certificate

Hello it looks like our Djigzo installation does not extract certificates from incoming mail if the recipient does not have a certificate/key. We have a internal domain configured to remove digital signature from incoming mail and all mail is routed through this gateway. If i send a

Re: [Djigzo users] Certificate not extracted when recipient has no certificate

It's related to strict mode BTW. In strict mode the certificates don't get extracted while without strict mode it works as expected. This is not intended behaviour, no? Regards Andreas smime.p7s Description: S/MIME Cryptographic Signature ___

[Djigzo users] Revoked certificate because of extension?

Today i discovered a collected certificate which is marked as revoked by Djigzo. When openning the certificate the info field contains the following: Certificate not accepted. Revocation status :Unknown critial extension So the question is if this certificate is really revoked or can not

Re: [Djigzo users] config mta on frontend

Zitat von Claudio Bazan cba...@gmail.com: Hi Martijn, Once again thanks for the info, I think I'll have to send a gift from my country after so much trouble. I could successfully send encrypted email, decrypt using the certificate also pre-loaded in thunderbird. Now the question I have is

Re: [Djigzo users] Newbie problem with setup

Zitat von Martijn Brinkers mart...@djigzo.com: On 05/26/2011 03:57 PM, jhall...@mindea.com wrote: No. I can successfully ping localhost, but nothing else; cannot ping other equipment inside my network nor internet IPs. Jeff I belief you are using the Virtual Appliance for VMware

Re: [Djigzo users] Newbie problem with setup

Zitat von jhall...@mindea.com: Andreas, I followed your instructions. ~$ ifconfig readout for eth0 is lacking the inet addr: line. It DOES show inet6 addr: line. The section for lo (loopback) correctly shows inet addr: 127.0.0.1... as well as inet6 addr: line. So it appears eth0 is configured

Re: [Djigzo users] Newbie problem with setup

Zitat von jhall...@mindea.com: Pinging 208.67.222.222 from host machine and all machines in my office returns successful. Pinging 208.67.222.222 from djigzo fails. Could this be a VMWare Player issue? I have the latest version. Jeff Looks fine. Now try to ping 208.67.222.222 (your first DNS

Re: [Djigzo users] Newbie problem with setup

Zitat von jhall...@mindea.com: I'm currently letting my router assign the djigzo an IP address from DHCP. If I assign it manually I would do this, but I need help filling in the last two items. Config Network... Network config address: 192.168.168.45 gateway: 192.168.168.1 netmask:

Re: [Djigzo users] Not collecting expired certificates?

Zitat von Martijn mart...@djigzo.com: On 01/-10/-28163 08:59 PM, lst_ho...@kwsoft.de wrote: Hello today i discovered that if a mail is signed by i expired certificate the certificate is still fetched and added to the Djigzo store. Is this useful in any case or wouldn't it be better to ignore

[Djigzo users] Not collecting expired certificates?

Hello today i discovered that if a mail is signed by i expired certificate the certificate is still fetched and added to the Djigzo store. Is this useful in any case or wouldn't it be better to ignore expired certificates? Regards Andreas smime.p7s Description: S/MIME Cryptographic

Re: [Djigzo users] Not collecting expired certificates?

Zitat von Christine Karman christ...@christine.nl: On 05/09/2011 10:53 AM, lst_ho...@kwsoft.de wrote: today i discovered that if a mail is signed by i expired certificate the certificate is still fetched and added to the Djigzo store. Is this useful in any case or wouldn't it be better to

[Djigzo users] LDAP search for certificates

Hello today i once again collected a certificate by hand from a trustcenter webform where a LDAP directory would be available to search for public certificates. We once discussed the possibility to let Djigzo search automatically for configurable cases on this list, but it's been some

Re: [Djigzo users] Reject unencrypted mail

Hello If you really want to reject (instead of bounce) you have to use Postfix for this, because at Djigzo stage the mail has already been accepted. You may have a look here http://www.postfix.org/BUILTIN_FILTER_README.html to see how Postfix can examine a mail on-the-fly before queuing.

Re: [Djigzo users] bucardo swap master to master sync: must specify a primary key

Zitat von Martijn Brinkers mart...@djigzo.com: Interesting. I will check whether I can add the primary keys. Right now the SQL schema is generated by Hibernate. I need to add these just after the schema is generated. It's the first time I read about bucardo and it's interesting because they

Re: [Djigzo users] [OT] Invalid signature because of Content-Transfer-Encoding: 8bit

Zitat von Martijn Brinkers mart...@djigzo.com: today i got a mail fro a well known German Trustcenter with a invalid signature warning (content altered). A former mail to an other account from the same Trustcenter was valid. On inspection it looks like someone altered the encoding because the

Re: [Djigzo users] Strange Key Usage nonRepudiation

Zitat von Martijn Brinkers mart...@djigzo.com: On 01/-10/-28163 08:59 PM, lst_ho...@kwsoft.de wrote: Hello today i found some certificate in our Djigzo store with key usage = nonRepudiation. I have grabed the matching root CA but this certificate is still marked as invalid so the quetsion is

[Djigzo users] customize xml config

Hello is it possible to *overrule* settings made in james/config.xml like deliveryThreads in the smtp_transport_config.xml file? The settings for gateway and gatewayPort are commented out in config.xml so i'm not sure if overrule works also. Regards Andreas smime.p7s Description:

Re: [Djigzo users] header information, ca settings and end-to-end encryption

Zitat von Bernhard Heinzle bernhard.hein...@gmail.com: Hi Martjin, maybe you can help me with the following issues: On incoming signed E-Mails, Djigzo puts the CN of the sender's intermediate CA next to the X-Djigzo-Info-Signer-ID-0-1-header. Shouldn't it be the CN of the sender's user

Re: [Djigzo users] Cannot create external user certificate with e-mail enabled

Uhh, sorry. Please ignore the latest mail, simply fat-fingered with too less coffee. Regards Andreas smime.p7s Description: S/MIME Cryptographic Signature ___ Users mailing list Users@lists.djigzo.com http://lists.djigzo.com/lists/listinfo/users

Re: [Djigzo users] Djigzo and IPv6

Zitat von Martijn Brinkers mart...@djigzo.com: are there any problems suspected when part of the mailflow will be IPv6? Djigzo will be sandwiched with IPv4 localhost but we are on the way to configure Postfix for IPv6. So the question is if there is some internal processing (mail header etc.)

Re: [Djigzo users] Automatic certificate selection

Zitat von Martijn Brinkers mart...@djigzo.com: Hi Andreas, new certificates for some transit time in our Djigzo database. This should be no problem for decrypting keys as all matching for a give address will be tried i guess. Yes that should be no problem. The gateway will search for any

Re: [Djigzo users] !!!WARNING!!! : Don't upgrade Java if you are using Ubuntu 8.04!!

Zitat von Martijn Brinkers mart...@djigzo.com: Hi, An update: It's a bug in the updated Ubuntu OpenJDK package. I have contacted the package maintainer and explained what goes wrong. Hopefully an updated OpenJDK package will soon be available. I will investigate a possible workaround and

Re: [Djigzo users] Way to find out missing root-CA

Zitat von Martijn Brinkers mart...@djigzo.com: is there a easy way to find out which root-CA is missing if a user certificate is stated as invalid because of missing root? The way to do it currently is to copy the issuer field of the certificate (open the certificate info by clicking the

Re: [Djigzo users] Djigzo release candidate 1.4.0

Zitat von Martijn Brinkers mart...@djigzo.com: Hi Andreas, Half an hour ago i thought of asking for a release candidate and voila... ;-) Unfortunately there is nothing in for us today :-( I'm sure there will be plenty of new features in future versions that will please you :) No doubt