Re: Signing a message with S/MIME in Gnus?

info-gnus-english

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Signing a message with S/MIME in Gnus?

From:	Angel de Vicente
Subject:	Re: Signing a message with S/MIME in Gnus?
Date:	Wed, 02 Nov 2022 20:51:12 +0000
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/28.2 (gnu/linux)

Hello,

Jens Lechtenboerger <jens.lechtenboerger@fsfe.org> writes:

>> But when I try to sign a message from Gnus I always get a message saying
>> "No sign key for <angel.de.vicente@iac.es>; skip it? (y or n)"
>
> I use this:
> (setq mml-secure-smime-sign-with-sender t)

I already had that, but it looks like the part it was missing was that
the certificate I was using didn't have my e-mail address, so Gnus (via
gpgsm) would not find the right certificate to use. Importing another
certificate where the e-mail address was present solved that problem.

> And more: https://gitlab.com/lechten/defaultencrypt

That looks great, I'll have a look, becuase my SMIME setting is so far
much worse than my PGP one (my goal was to be able just to sign
messages, so I'll stop here for now, but later I want to make sure I
also get working the encryption/decryption part).

> Your CA links your e-mail address to your public key, both of which
> are recorded inside the certificate.  Gnus cannot do this.  Your
> output did not show whether the certificate really contains the
> e-mail address that you used...

The first certificate I was using didn't. When I used a second
certificate with the mail address in it all was good.

But here is a question. To send messages to this group I use another
e-mail address (which is not present in any of the certificates). There
is no way for me, then, to sign messages to this group with S-MIME?

I was hoping to use "Smime Keys", which according to the documentation
looks like the right way, but my attempts so far were not successful.

,----
| Show Value Smime Keys 
|    Map mail addresses to a file containing Certificate (and private key). Hide
|    The file is assumed to be in PEM format.  You can also associate additional
|    certificates to be sent with every message to each address.
`----

Thanks,
-- 
Ángel de Vicente                 -- (GPG: 0x64D9FDAE7CD5E939)
 Research Software Engineer (Supercomputing and BigData)
 Instituto de Astrofísica de Canarias (https://www.iac.es/en)

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

Signing a message with S/MIME in Gnus?, Angel de Vicente, 2022/11/02
- Re: Signing a message with S/MIME in Gnus?, Jens Lechtenboerger, 2022/11/02
  - Re: Signing a message with S/MIME in Gnus?, Angel de Vicente <=
    - Re: Signing a message with S/MIME in Gnus?, Jens Lechtenboerger, 2022/11/03
    - Re: Signing a message with S/MIME in Gnus?, Angel de Vicente, 2022/11/03
    - Re: Signing a message with S/MIME in Gnus?, Angel de Vicente, 2022/11/03
    - Re: Signing a message with S/MIME in Gnus?, GH, 2022/11/03
    - Re: Signing a message with S/MIME in Gnus?, Angel de Vicente, 2022/11/03
    - Re: Signing a message with S/MIME in Gnus?, Angel de Vicente, 2022/11/04
    - Re: Signing a message with S/MIME in Gnus?, Jens Lechtenboerger, 2022/11/03
    - Re: Signing a message with S/MIME in Gnus?, Emanuel Berg, 2022/11/03

Prev by Date: Re: Signing a message with S/MIME in Gnus?
Next by Date: Re: Signing a message with S/MIME in Gnus?
Previous by thread: Re: Signing a message with S/MIME in Gnus?
Next by thread: Re: Signing a message with S/MIME in Gnus?
Index(es):
- Date
- Thread