On 27/12/2011 11:32 μμ, Michael M Slusarz wrote:
Do you locally have a copy of the signer's certificate? If not, there is no way to reliably verify the certificate - anybody can create a certificate containing the sender's credentials.
Hmm, not really; If the personal certificate is signed from an official CA, whose certificate is in turn included in the CAfile used for verification (which is the case in our scenario), then the certificate is considered verified. Isn't it?
Nick -- IMP mailing list Frequently Asked Questions: http://horde.org/faq/ To unsubscribe, mail: imp-unsubscr...@lists.horde.org
