#SMIME

0 posts0 participants0 posts today

S. k. k. H. Bernd ✔️<a href="https://chaos.social/@kenji" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@kenji</a> Solange E-Mail-Sicherheit <a href="https://troet.cafe/tags/verschlusselungsverfahren" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#verschlusselungsverfahren</a> als Geschäftsmodell von Monopolisten <a href="https://troet.cafe/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a> verstanden wird und <a href="https://troet.cafe/tags/pgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pgp</a> nicht standardmäßig eingebaut und -geschaltet wird, hat E-Mail-Sicherheit keine Chance.

FionaDo I know anyone who knows how <a href="https://woem.men/tags/Thunderbird" rel="nofollow noopener noreferrer" target="_blank">#Thunderbird</a> does mail address normalization when searching for recipient S/MIME certificates, or knows where to start looking in the code? Thunderbird (128 still) refuses to recognize the certificate for a certain contact as belonging to the mail address, while it works perfectly fine in Evolution. And the only odd thing about it I can see is that the email address is written with capitalization in both <code>RFC822Name</code> in the SAN and the email field of the DN. In the certificate list Thunderbird shows the mail address in lower case, but it doesn't let me send S/MIME mail to the address no matter which way I spell it. <a href="https://woem.men/tags/smime" rel="nofollow noopener noreferrer" target="_blank">#smime</a>

Matthew SloweSo far, none have come to light. This is a sad time for <a href="https://infosec.exchange/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a> and freely available private and confidential, or verifiable, email options.

Matthew SloweIt seems that the last remaining provider of Free personal S/MIME certificates (Actalis) has now left that space.Are there any others left that I don't know about?<a href="https://infosec.exchange/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a> <a href="https://infosec.exchange/tags/certificates" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#certificates</a> <a href="https://infosec.exchange/tags/personal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#personal</a>

Athoune 🥕🔪Le mail est omniprésent, mais peut-il être sécurisé et confidentiel ?<a href="https://blog.garambrogne.net/infomaniak-securite-mail.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://blog.garambrogne.net/infomaniak-securite-mail.html</a><a href="https://mastodon.xyz/tags/webmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#webmail</a> <a href="https://mastodon.xyz/tags/gpg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#gpg</a> <a href="https://mastodon.xyz/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a>

Emorybehold my longest running <a href="https://soc.kvet.ch/tags/keybase" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#keybase</a> issue: <a href="https://github.com/keybase/keybase-issues/issues/387" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/keybase/keybase-issues/issues/387</a>"S/MIME Support"man that would have been nice. i was thinking about doing somnething like this for a web of trust model but then i was like why the hell isn't LetsEncrypt doing it? like the moment they do i would probably rather use theirs you know 😂 as it is today i just sign emails occasionally with a cert signed by my offline CA and published online. will manually confirm. like pgp but ez<a href="https://soc.kvet.ch/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a> <a href="https://soc.kvet.ch/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#encryption</a> <a href="https://soc.kvet.ch/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://soc.kvet.ch/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a>

JayViiDoes anyone have experience with either <a href="https://social.jayvii.de/tags/Yubikey" class="hashtag" rel="nofollow noopener noreferrer" target="_blank">#Yubikey</a>, <a href="https://social.jayvii.de/tags/Nitrokey" class="hashtag" rel="nofollow noopener noreferrer" target="_blank">#Nitrokey</a> or any other hardware security token for both <a href="https://social.jayvii.de/tags/MFA" class="hashtag" rel="nofollow noopener noreferrer" target="_blank">#MFA</a>/<a href="https://social.jayvii.de/tags/2FA" class="hashtag" rel="nofollow noopener noreferrer" target="_blank">#2FA</a> as well as <a href="https://social.jayvii.de/tags/encryption" class="hashtag" rel="nofollow noopener noreferrer" target="_blank">#encryption</a> via <a href="https://social.jayvii.de/tags/PGP" class="hashtag" rel="nofollow noopener noreferrer" target="_blank">#PGP</a>/<a href="https://social.jayvii.de/tags/GPG" class="hashtag" rel="nofollow noopener noreferrer" target="_blank">#GPG</a> or <a href="https://social.jayvii.de/tags/SMIME" class="hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a>?In particular, I am looking at the <a href="https://shop.nitrokey.com/de/shop/nk3an-nitrokey-3a-nfc-147?search=nitrokey+3#attr=" rel="nofollow noopener noreferrer" target="_blank">Nitrokey 3A NFC</a>. As far as I can tell, Yubico only sells <a href="https://social.jayvii.de/tags/MFA" class="hashtag" rel="nofollow noopener noreferrer" target="_blank">#MFA</a> tokens(?), unless the <a href="https://www.yubico.com/de/product/yubikey-5-fips-series/yubikey-5-nfc-fips/" rel="nofollow noopener noreferrer" target="_blank">YubiKey 5 FIPS Series</a> can hold encryption keys as well?Both price and open hardware aspect definitely speak for Nitrokey, but I do not know anyone who owns such a token... Anyone who I can talk to?

Konstantin Weddige<a href="https://social.wildeboer.net/@jwildeboer" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@jwildeboer</a>'s recent thread about his CA co-op idea inspired me to write down some thoughts on email encryption.<a href="https://weddige.eu/en/articles/lets-encrypt-emails/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://weddige.eu/en/articles/lets-encrypt-emails/</a><a href="https://gruene.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> <a href="https://gruene.social/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a>

Bitnapper 🏳️‍🌈⁣🇪🇺⁣🦕 ⁣🐈 ⁣Kennt sich jemand eingehender mit der technischen Umsetzung von Passwortmanagern aus. Mich interessiert die über ein HSM-gesicherte Ablage von Keys, Nichtexportierbarkeit von bestimmten Keys und Verwendung als Middleware für S/MIME, Signatur- und Authentifizierungszertifikaten. Ich habe bisher nicht viel darüber gefunden und würde gerne wissen ob es technische Gründe dafür gibt oder eher an dem mangelnden Bedarf liegt. <a href="https://chaos.social/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a> <a href="https://chaos.social/tags/passwordmanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwordmanager</a> <a href="https://chaos.social/tags/hsm" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hsm</a>

Hella<a href="https://social.tchncs.de/@klausgesprochen" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@klausgesprochen</a> <a href="https://social.mailbox.org/@mailbox_org" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mailbox_org</a> Anscheinend geht <a href="https://social.tchncs.de/tags/SMime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMime</a> bei <a href="https://social.tchncs.de/tags/MailboxOrg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MailboxOrg</a> noch nicht direkt: "Wir haben die Integration von S/MIME auf dem Plan, können aber über den Zeitpunkt der Umsetzung noch keine verbindliche Aussage treffen."<a href="https://kb.mailbox.org/de/privat/e-mail/smime-beim-verschluesselten-postfach" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://kb.mailbox.org/de/privat/e-mail/smime-beim-verschluesselten-postfach</a>

Karl Voit :emacs: :orgmode:If you need <a href="https://graz.social/tags/E2EE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#E2EE</a> via <a href="https://graz.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a>, the only 2 valid standards are <a href="https://graz.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenPGP</a> and <a href="https://graz.social/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a>. It's not that those are without issues but everything else is mediocre.Yes, you can switch to non-email-services as well such as <a href="https://graz.social/tags/Signal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Signal</a>. But that's a different island.<a href="https://graz.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://graz.social/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#encryption</a> <a href="https://graz.social/tags/mail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mail</a> <a href="https://graz.social/tags/GMail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GMail</a>

Emory<a href="https://snug.town/@ducksauz" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@ducksauz</a> my lawyers were getting my emails in spam folders and i thought it was because i am self-sovereign on PKI and i use an <a href="https://soc.kvet.ch/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a> cert signed by my offline CA in the safe 😆 but apparently it was just "dmarc is weird gonna quarantine", i need to see if i have it wrong on all of them. hellyeah has been around forever and is at G, so probably okay by association but axiopisty org|com are delivering to iCloud for me.

LucaDoes anybody have a good link for a „How to create detailed <a href="https://troet.cafe/tags/thunderbird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#thunderbird</a> logs“? I don’t really get how to do it.I need detailed information what decisions Thunderbird „makes“ in terms of <a href="https://troet.cafe/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a>/signatures/verification when opening a mail.<a href="https://troet.cafe/tags/logging" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#logging</a> <a href="https://troet.cafe/tags/foss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#foss</a> <a href="https://troet.cafe/tags/mozilla" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mozilla</a>

Olivier Duquesne aka DaffyDukeRT @gnupg@twitter.comGnuPG's <a href="https://mamot.fr/tags/OpenPGP" class="mention hashtag" rel="tag">#OpenPGP</a> (gpg) and <a href="https://mamot.fr/tags/SMIME" class="mention hashtag" rel="tag">#SMIME</a> (gpgsm) implementation approved for restricted communication in Germany and Europe. <a href="https://mamot.fr/tags/windows" class="mention hashtag" rel="tag">#windows</a> <a href="https://mamot.fr/tags/kmail" class="mention hashtag" rel="tag">#kmail</a> <a href="https://mamot.fr/tags/vsnfd" class="mention hashtag" rel="tag">#vsnfd</a> [<a href="https://mamot.fr/tags/german" class="mention hashtag" rel="tag">#german</a>] <a href="https://twitter.com/BSI_Bund/status/1125709041760653312" target="_blank" rel="nofollow noopener noreferrer" translate="no">https://twitter.com/BSI_Bund/status/1125709041760653312</a>🐦🔗: <a href="https://twitter.com/gnupg/status/1126013090229882880" target="_blank" rel="nofollow noopener noreferrer" translate="no">https://twitter.com/gnupg/status/1126013090229882880</a>

Recent searches

Search options

Administered by:

Server stats: