Re: SMIME and user certs.

2004-05-14 Thread Dr. Stephen Henson
On Fri, May 14, 2004, David Gianndrea wrote: > Dr. Stephen Henson wrote: > > >If you create an email sign it and save as a draft then find the draft and > >save it as a .eml file you can try: > > > >openssl smime -pk7out -in message.eml -out mess.pem > > > >openssl asn1parse -in mess.pem > > > >y

Re: SMIME and user certs.

2004-05-14 Thread David Gianndrea
Dr. Stephen Henson wrote: If you create an email sign it and save as a draft then find the draft and save it as a .eml file you can try: openssl smime -pk7out -in message.eml -out mess.pem openssl asn1parse -in mess.pem you'll see things like des, rc2 and so on in there. Thanks Dr. Steve, I almost

Re: SMIME and user certs.

2004-05-13 Thread Dr. Stephen Henson
On Thu, May 13, 2004, David Gianndrea wrote: > > > If I sent my self a signed message, is there a way using the openssl > command to see what the SMIMECapabilities attribute is set too? Would > it be a list of the OID's of all the ciphers? > > If you create an email sign it and save as a draf

Re: SMIME and user certs.

2004-05-13 Thread David Gianndrea
Dr. Stephen Henson wrote: Well you could look at the S/MIME v2 specs, the SMIMECapabilities attribute is specified in RFC2311. Ok the fog is starting to clear a bit. In looking at other mail clients mainly the current Outlook, and Outlook Express I can see that there are ways to set the minimum le

Re: SMIME and user certs.

2004-05-12 Thread Dr. Stephen Henson
On Wed, May 12, 2004, David Gianndrea wrote: > Dr. Stephen Henson wrote: > > > >When email is signed the other side receives a list of supported ciphers. > >Many > >email applications will list these against that recipient and use an > >appropriate one: that is one that the email software suppo

Re: SMIME and user certs.

2004-05-12 Thread David Gianndrea
Dr. Stephen Henson wrote: When email is signed the other side receives a list of supported ciphers. Many email applications will list these against that recipient and use an appropriate one: that is one that the email software supports and the recipient supports. Humm, Ok I am using mozilla as a

Re: SMIME and user certs.

2004-05-12 Thread Dr. Stephen Henson
On Wed, May 12, 2004, David Gianndrea wrote: > Is it possible to create an AES-256 user cert for personal > email signing and encrypting? > There's no such thing[*]. > Perhaps more correctly what determines what cipher is used > to encrypt an SMIME email. Is it the cert or the email > applicati

SMIME and user certs.

2004-05-12 Thread David Gianndrea
Is it possible to create an AES-256 user cert for personal email signing and encrypting? Perhaps more correctly what determines what cipher is used to encrypt an SMIME email. Is it the cert or the email application? If it is the email app, then just what is the cert doing for the email app? An inqu