[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Observations on how some mail lists deal with signed (S/MIME and PGP) messages

To: "william(at)elan.net" <william@xxxxxxxx>
Subject: Re: Observations on how some mail lists deal with signed (S/MIME and PGP) messages
From: Jim Fenton <fenton@xxxxxxxxx>
Date: Tue, 01 Feb 2005 10:21:14 -0800
Cc: ietf-mailsig@xxxxxxx
Iim-sig: v:"1.1"; h:"imail.cisco.com"; d:"cisco.com"; z:"home"; m:"krs"; t:"1107281821.498148"; x:"432200"; a:"rsa-sha1"; b:"nofws:1079"; e:"Iw=="; n:"sQYarK2E51MdcTiUqeif3F7cWdxIfoCiXhdfb9vD5ee/j0jXL15gbFxF2p" "XIweAblu0N6XAgK7k+wrbr7bQDJaCDqOmzqpRUBjIRQAXQ7NzadpmR3pUL6wxaRUtW+c43sl9jC" "50Qg1sXHpPjt8Y+Y16ioyQAQAdSunM4YhevURc="; s:"cfw7fvs+xpmwmsQ0bCqfpmdDeg9/C5YT4STQU763YRJpIngXKEolUGHpT/EcX3Zb19NYhLWK" "ywJzsizMwcI2uhiyMXZ97fEOG+F2/bRvb3wa0oCsh9pzdTNUBfF0At1JbwmqlQm/AjvmJE32rYj" "4+vfiFBwpHaR7lZullAgOFoA="; c:"Date: Tue, 01 Feb 2005 10:21:14 -0800"; c:"From: Jim Fenton <fenton@cisco.com>"; c:"Subject: Re: Observations on how some mail lists deal with signed (S" "/MIME=0A and PGP) messages"
Iim-verify: s:"y"; v:"y"; r:"60"; h:"imail.cisco.com"; c:"message from imail.cisco.com verified; "
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-mailsig/mail-archive/>
List-id: <ietf-mailsig.imc.org>
List-unsubscribe: <mailto:ietf-mailsig-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-mailsig@xxxxxxxxxxxx
User-agent: Mozilla Thunderbird 1.0 (Windows/20041206)

William,

I think you're arguing in favor of your earlier ideas on MIME encapsulation, but as I read it all of the things you're describing are dealt with if the mailing list (or whatever munges the message) re-signs it after modification. Is there any situation you see where re-signing isn't feasible?

-Jim

william(at)elan.net wrote:

I've been looking at what do different mail redirection systems (mail lists in particular) do with emails and discovered that some (especially newer) mail lists treat S/MIME and PGP/MIME signed email different then other email they process (not surprising and this is obviously a good thing).
In particular what I found interesting cases when mail list saw
multipart/signed as primary Content-Type in the email header, it made
that into separate multipart/signed mime part and made the email itself
multipart/mixed consisting of this multipart/signed part as first one
and then text/plain with mail list signature.
So in this case email list not only added text at the end but in the middle and changed content-type and I imagine this would be a problem for IIM. This case is also why I said when I first saw DK draft about year ago, that for mime messages, signature should be linked to mime part(s) rather then be for entire message.

Follow-Ups:
- Re: Observations on how some mail lists deal with signed (S/MIME and PGP) messages
  - From: william(at)elan.net

References:
- Observations on how some mail lists deal with signed (S/MIME and PGP) messages
  - From: william(at)elan.net

Prev by Date: Observations on how some mail lists deal with signed (S/MIME and PGP) messages
Next by Date: MASS Security Review document
Previous by thread: Observations on how some mail lists deal with signed (S/MIME and PGP) messages
Next by thread: Re: Observations on how some mail lists deal with signed (S/MIME and PGP) messages
Index(es):
- Date
- Thread