From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.general/33203 Path: main.gmane.org!not-for-mail From: Simon Josefsson Newsgroups: gmane.emacs.gnus.general Subject: Re: S/MIME Date: 05 Nov 2000 13:18:50 +0100 Sender: owner-ding@hpc.uh.edu Message-ID: References: <873dhbz5be.fsf@cenderis.demon.co.uk> <2n4s1n3rez.fsf@tiger.jia.vnet> NNTP-Posting-Host: coloc-standby.netfonds.no Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Trace: main.gmane.org 1035169351 23825 80.91.224.250 (21 Oct 2002 03:02:31 GMT) X-Complaints-To: usenet@main.gmane.org NNTP-Posting-Date: Mon, 21 Oct 2002 03:02:31 +0000 (UTC) Cc: ding@gnus.org Return-Path: Original-Received: from spinoza.math.uh.edu (spinoza.math.uh.edu [129.7.128.18]) by mailhost.sclp.com (Postfix) with ESMTP id 8653BD049A for ; Sun, 5 Nov 2000 07:18:33 -0500 (EST) Original-Received: from sina.hpc.uh.edu (lists@Sina.HPC.UH.EDU [129.7.3.5]) by spinoza.math.uh.edu (8.9.1/8.9.1) with ESMTP id GAB04767; Sun, 5 Nov 2000 06:18:23 -0600 (CST) Original-Received: by sina.hpc.uh.edu (TLB v0.09a (1.20 tibbs 1996/10/09 22:03:07)); Sun, 05 Nov 2000 06:17:47 -0600 (CST) Original-Received: from mailhost.sclp.com (postfix@66-209.196.61.interliant.com [209.196.61.66] (may be forged)) by sina.hpc.uh.edu (8.9.3/8.9.3) with ESMTP id GAA05084 for ; Sun, 5 Nov 2000 06:17:36 -0600 (CST) Original-Received: from dolk.extundo.com (dolk.extundo.com [195.42.214.242]) by mailhost.sclp.com (Postfix) with ESMTP id 79973D049B for ; Sun, 5 Nov 2000 07:18:02 -0500 (EST) Original-Received: from barbar.josefsson.org (localhost.localdomain [127.0.0.1]) (authenticated) by dolk.extundo.com (8.11.1/8.11.1) with ESMTP id eA5CHvG29613; Sun, 5 Nov 2000 13:17:57 +0100 Original-To: ShengHuo ZHU In-Reply-To: <2n4s1n3rez.fsf@tiger.jia.vnet> Mail-Copies-To: nobody Original-Lines: 39 User-Agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/20.7 Precedence: list X-Majordomo: 1.94.jlt7 Xref: main.gmane.org gmane.emacs.gnus.general:33203 X-Report-Spam: http://spam.gmane.org/gmane.emacs.gnus.general:33203 ShengHuo ZHU writes: > 1. The output of openssl may contain ^M's. At least, I found one at > the end of the first MIME boundary. I don't know why. Should those > ^M's be removed? OpenSSL problem, fixed in 0.9.6. I believe the signature isn't calculated over the boundary so this shouldn't cause any problems, I think. > 2. When smime-verify-buffer is called, the article headers have been > decoded, which means that users may have to pick a coding system to > encode those non-ASCII characters before it is sent to openssl. It > would be better to copy the article to a new buffer, and remove > unnecessary headers, or just narrow to the article body. Right. I added mm-handle-multipart-* to get information of a MIME multipart, and it's used by mml-smime-verify now. What do you think, is the copying too costly? I think the proper solution would be to add a reference to the "upper" MIME object within a MIME handle. I'm not sure how to do that in elisp though. The uppermost MIME handle should also include a reference to the RFC822 article headers too, because the "From:" line should be verified to match the certificate used to sign a message. Also, what should happen when verification fails? For S/MIME it print a message saying if the verification was successful or not, PGP/MIME doesn't seem to print anything, and display a *MML2015* buffer if the verification fail. Neither is very intuitive if you got 100 signed parts in a mail. I think it would be nice if verification/decryption status was displayed such as [text/plain; signed (S/MIME): Undecided] [text/plain; signed (S/MIME): OK] [text/plain; signed (S/MIME): Failed] and you could pop up the menu and get some kind of "Security info" for that MIME part, with more details.