From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.general/69845 Path: news.gmane.org!not-for-mail From: David Engster Newsgroups: gmane.emacs.gnus.general Subject: gpgsm for S/MIME (was Re: Bug#6654) Date: Wed, 28 Jul 2010 07:35:46 +0200 Message-ID: <87zkxcb231.fsf_-_@randomsample.de> References: <841vap6gjo.fsf@davestoy.home> <84tynk4c8f.fsf@davestoy.home> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Trace: dough.gmane.org 1280295385 25445 80.91.229.12 (28 Jul 2010 05:36:25 GMT) X-Complaints-To: usenet@dough.gmane.org NNTP-Posting-Date: Wed, 28 Jul 2010 05:36:25 +0000 (UTC) To: ding@gnus.org Original-X-From: ding-owner+M18235@lists.math.uh.edu Wed Jul 28 07:36:24 2010 Return-path: Envelope-to: ding-account@gmane.org Original-Received: from util0.math.uh.edu ([129.7.128.18]) by lo.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1OdzJY-0006eh-07 for ding-account@gmane.org; Wed, 28 Jul 2010 07:36:24 +0200 Original-Received: from localhost ([127.0.0.1] helo=lists.math.uh.edu) by util0.math.uh.edu with smtp (Exim 4.63) (envelope-from ) id 1OdzJG-0001fh-5f; Wed, 28 Jul 2010 00:36:06 -0500 Original-Received: from mx1.math.uh.edu ([129.7.128.32]) by util0.math.uh.edu with esmtps (TLSv1:AES256-SHA:256) (Exim 4.63) (envelope-from ) id 1OdzJC-0001fN-Cq for ding@lists.math.uh.edu; Wed, 28 Jul 2010 00:36:02 -0500 Original-Received: from quimby.gnus.org ([80.91.231.51]) by mx1.math.uh.edu with esmtp (Exim 4.72) (envelope-from ) id 1OdzJA-0001Ia-V7 for ding@lists.math.uh.edu; Wed, 28 Jul 2010 00:36:02 -0500 Original-Received: from m61s02.vlinux.de ([83.151.21.164]) by quimby.gnus.org with esmtp (Exim 3.36 #1 (Debian)) id 1OdzJA-0002o5-00 for ; Wed, 28 Jul 2010 07:36:00 +0200 Original-Received: from dslc-082-082-179-099.pools.arcor-ip.net ([82.82.179.99] helo=spaten) by m61s02.vlinux.de with esmtpsa (TLS1.0:DHE_RSA_AES_128_CBC_SHA1:16) (Exim 4.69) (envelope-from ) id 1OdzJ9-0002AD-Hj for ding@gnus.org; Wed, 28 Jul 2010 07:35:59 +0200 In-Reply-To: <84tynk4c8f.fsf@davestoy.home> (Dave Goldberg's message of "Tue, 27 Jul 2010 21:38:24 -0400") User-Agent: Gnus/5.110011 (No Gnus v0.11) Emacs/23.2 (gnu/linux) Mail-Copies-To: never Mail-Followup-To: ding@gnus.org X-Spam-Score: -1.9 (-) List-ID: Precedence: bulk Xref: news.gmane.org gmane.emacs.gnus.general:69845 Archived-At: Dave Goldberg writes: > I'll have to try that patch as decrypting and viewing is nearly as > important to me as being able to encrypt :-) If not, do the back ends > allow one to use gpgsm for sending and the old openssl mode for > reading? Yes. Actually, that's what currently happening for decrypting S/MIME, so if you've already got through the tedious openssl setup, you should be fine. The main advantage of gpgsm is that is has adopted the GPG-style key management for certificates, so it's pretty straightforward to use. If you verify a signed mail, you'll automatically have the sender's certificate for future use. With openssl, I used a pretty lengthy code snippet to snarf the certificate, save it and put a link to it in the BBDB. Also, the gpg-agent will take care of securely asking for passwords and caching (although this can be a disadvantage if you're working on the console; it is not always clear on which tty the dialog will pop up, but you can always "seed" the agent with the password beforehand). -David