Digital signature invalidated
Nick Phillips
nwp at LEMON-COMPUTING.COM
Fri Mar 22 22:26:38 GMT 2002
On Fri, Mar 22, 2002 at 11:55:36AM +0000, Ben Tullis wrote:
> Several times a message has been reported to have been changed during
> transmission, thereby invalidating the digital signature.
Hmmm... haven't really used it with signed mail much if at all.
> I have tried switching off 'sign clean messages' and 'scan all messages' to
> no avail. Not all signed messages are corrupted, but particularly the ones
> with a MIME payload such as video/mpeg.
MIME messages are probably being unpacked and rebuilt.
I'll have to get set up here, and then I'll look into it.
> Please help. I need to implement a company-wide PKI and do not wish to
> have to abandon mailscanner.
Don't worry; I will need signed messages to pass unscathed too, so...
> I have not disabled the 'X-Mailscanner: found to be clean' header, but it
> was my understanding that this should not invalidate the message body
> signature.
What are you using to sign the messages; there are (at least) two different
ways that messages get signed, depending on the age and quality of the
software you're using.
Just for reference, I'll sign this using Mutt. Mutt, so far as I know, does
it the modern, "right", way.
Cheers,
Nick
--
Nick Phillips -- nwp at lemon-computing.com
Excellent day to have a rotten day.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 240 bytes
Desc: not available
Url : http://lists.mailscanner.info/pipermail/mailscanner/attachments/20020323/0ccda1a9/attachment.bin
More information about the MailScanner
mailing list