Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

S/MIME chained certificates.

4 views
Skip to first unread message

Matthias Rieber

unread,
Aug 31, 2008, 6:35:08 PM8/31/08
to
Hello,

I tried to sign an email with a chained certificate. The normal pem file
created from the p12 file contained the CAs in the following order:
intermediate ca, root ca, email ca.

Alpine refuses to use this certificates. It seems that it does not
recognize it as approriate certficate. Moving the email ca to the first
position works, but Alpine does not include the chain certificates to the
p7s attachment. Without that the receiver must install the intermediate
CAs to verify the email.

Is this feature not yet implemented? Do I need to create the pem file in a
special way?

matthias

Steve Hubert

unread,
Sep 2, 2008, 1:12:17 PM9/2/08
to
On Mon, 1 Sep 2008, Matthias Rieber wrote:

> Is this feature not yet implemented? Do I need to create the pem file in a
> special way?

It's probably not implemented. Our understanding of the smime code was not
very deep. If an expert wishes to add to the code we'd be happy to put
the results back in the code base. Thanks.

Steve


0 new messages