There are several possible reasons for the behaviour. "40-rc2" in S/MIME
is usually a 40 bit key with an effective key size of 40 bits. However
some S/MIME agents just have an effective key size of 40 bits and the
key length is determined by the size of the decrypted RSA block. OpenSSL
can currently only handle the 40+40 kind.
If you can send me some mail encrypted with a test certficicate and the
key and certificate itself I'll check to see if this is the case.
When you send mail its possible the client can't decrypt it because the
encryption is too strong: enc uses triple DES by default. Try using -c
RC2-40-CBC on the enc command line. It also possible the document you
are trying to encrypt doesn't have the necessary MIME headers: if you
don't include MIME headers in Netscape for example the mail shows up as
blank.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
