[Bug 280245] Kmail create an unnecessary line in mail header with s/mime sign
Nicholas Sushkin
nsushkin at sushkins.net
Wed Dec 21 02:50:23 GMT 2011
https://bugs.kde.org/show_bug.cgi?id=280245
--- Comment #2 from Nicholas Sushkin <nsushkin sushkins net> 2011-12-21 02:50:23 ---
Actually this newer RFC (http://tools.ietf.org/html/rfc3851#section-3.4) says
it better.
3.4. Creating a Signed-only Message
There are two formats for signed messages defined for S/MIME:
application/pkcs7-mime with SignedData, and multipart/signed. In
general, the multipart/signed form is preferred for sending, and
receiving agents MUST be able to handle both.
3.4.1. Choosing a Format for Signed-only Messages
There are no hard-and-fast rules when a particular signed-only format
is chosen because it depends on the capabilities of all the receivers
and the relative importance of receivers with S/MIME facilities being
able to verify the signature versus the importance of receivers
without S/MIME software being able to view the message.
Messages signed using the multipart/signed format can always be
viewed by the receiver whether they have S/MIME software or not.
They can also be viewed whether they are using a MIME-native user
agent or they have messages translated by a gateway. In this
context, "be viewed" means the ability to process the message
essentially as if it were not a signed message, including any other
MIME structure the message might have.
Messages signed using the SignedData format cannot be viewed by a
recipient unless they have S/MIME facilities. However, the
SignedData format protects the message content from being changed by
benign intermediate agents. Such agents might do line wrapping or
content-transfer encoding changes which would break the signature.
It seems that KMail is sending signed messages as "multipart/signed", but using
SignedData, which is incorrect.
--
Configure bugmail: https://bugs.kde.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the Kdepim-bugs
mailing list