[kmail2] [Bug 339087] New: you cannot encrypt to an expired OpenPGP certificate
Hauke Laging
hauke at laging.de
Mon Sep 15 01:33:29 BST 2014
https://bugs.kde.org/show_bug.cgi?id=339087
Bug ID: 339087
Summary: you cannot encrypt to an expired OpenPGP certificate
Product: kmail2
Version: 4.11.5
Platform: openSUSE RPMs
OS: Linux
Status: UNCONFIRMED
Severity: major
Priority: NOR
Component: crypto
Assignee: kdepim-bugs at kde.org
Reporter: hauke at laging.de
KMail does not allow to encrypt to expired certificates. It is OK to warn about
that (and would be a failure not to do so) but not allowing to encrypt to this
key is a severe security failure because it does not make any sense and forces
the user to use a different key (if available, usually not) or to send the mail
unencrypted.
This is similar to the old (meanwhile solved) problem that you could not
encrypt to non-valid keys. Of course, encrypting to a non-valid (i.e. never has
been valid) key is much more severe that encrypting to an expired one which a
purely formal problem not a technical one.
Reproducible: Always
Steps to Reproduce:
1. Let a certificate expire.
2. Try to send a mail encrypted to this certificate.
Actual Results:
Email cannot be sent.
Expected Results:
Warning which can be overridden.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the Kdepim-bugs
mailing list