> presumably the private key should be 0600, and maybe the directory 0700?
The directory should be 0700 -- did you use the script's "init" command, or make the directories yourself? If you used "init" and it's not 0700, let me know. Just to be safe, i just sent Thomas a patch which sets umask 077 for the entire script. -- Mike Schiraldi VeriSign Applied Research
smime.p7s
Description: application/pkcs7-signature
