[kmail2] [Bug 358785] New: When forwarding a email as message/rfc822 attachment in a signed unencrypted email, header filtering leads to invalid signatures

via KDE Bugzilla bugzilla_noreply at kde.org
Sat Jan 30 17:26:00 GMT 2016


https://bugs.kde.org/show_bug.cgi?id=358785

            Bug ID: 358785
           Summary: When forwarding a email as message/rfc822 attachment
                    in a signed unencrypted email, header filtering leads
                    to invalid signatures
           Product: kmail2
           Version: 4.14.7
          Platform: Gentoo Packages
                OS: Linux
            Status: UNCONFIRMED
          Severity: wishlist
          Priority: NOR
         Component: composer
          Assignee: kdepim-bugs at kde.org
          Reporter: trempify at dasganma.tk

I forwarded an email as a message/rfc822 attachment. The forwarded e-mail
contained headers such as "X-Spam-Score" and some intermediate server filtered
these out, despite them being part of the message rather than in the headers of
the email I was sending. Because the headers of the forwarded message are
included in the multipart/signed PGP signature, the signature is now invalid.

This isn't a bug in KMail as such, but KMail could be set up to work around it
(which is why I have marked this bug report as a feature request).

Possible workarounds which could be done by KMail:
* Strip all but standard headers (e.g. Sender, From etc) when forwarding emails
as message/rfc822
* Encode message/rfc822 attachments using base64 (or possibly abuse
quoted-printable by quoting the header lines even when they do not need to be
quoted)

Reproducible: Always

-- 
You are receiving this mail because:
You are the assignee for the bug.



More information about the Kdepim-bugs mailing list