From: developers-owner bugzilla.org [mailto:developers-ownerbugzilla.org]
On Behalf Of Gervase Markham
Jason Pyeron wrote:
> It has been a while since I have worked with S/MIME, it
is really simple
> stuff. There should be no need to depend on any new
CPAN modules. Just
find
> a package that you can suck into bz and modify it to
play nice.
>
> What about*: http://www.mozilla.org/projects/security/pki/nss/smime/
>
> * I have note read the code, but the text seems to
fit.
For one thing, that requires all the keys to be stored in an
NSS-style
database. I had hoped we could find something that worked
like this:
$encryped_message = encrypt($message, $key);
with $key being whatever was pasted in plain text form into
the "Insert
Key Here" textbox on the profile page.
What I was saying, was to do just that, absorb the core
S/MIME part that
does the mime parsing and sign/encryption.
Then each/any user would add their x509 public cert in their
profile select
encrypt or sign on all messages
send(encrypt(sign(msg,bz.prvkey),user.pubkey))
Or
sign(msg,bz.prvkey)
There really is nothing to it, I just wish I had more time.
-
To view or change your list settings, click here:
<http:
//bugzilla.org/cgi-bin/mj_wwwusr?user=bondyahoo.com>
|