Am 12.01.2011 17:37, schrieb Martijn Brinkers:
as i was not quite sure anymore if i deleted the certificate/key or not i tested it once again. djigzo decrypts the message even after deleting the certificate/key. even after rebooting the gateway.Are you sure you deleted all private keys? You can see with what certificates the message was encrypted with from the headers. Are you sure that the gateway does not have a copy of the signer's private key? Email clients also encrypt the message with the signing certificate to make sure you can read the message from the sent items folder.
recipient's private key definitely got deleted. seems as if i found the reason.as the sender's certificate was issued by the same CA as the recipient's certificate, djigzo took the sender's certificate for decrypting the message. could this be the explanation?
if yes:given the situation that user a and b are internal users in djigzo, b gets deleted (user, certificate and keys), but emails send to a and b still can be read by b because djigzo uses the key of user a. is this justifiable (if the explanation mentioned above is correct)?
kind regards, bernhard
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Users mailing list [email protected] http://lists.djigzo.com/lists/listinfo/users
