[EMAIL PROTECTED] wrote: > This comes from another post at > http://groups.google.com/group/mozilla.support.thunderbird/browse_thread/thread/b1489671e5ddfa46/# > > I have a signed email with attachments. > It verifies ok in Thunderbird 1.5.0.10 > It fails to verify the signature in Outlook Express. > > Verification should fail since I know the signature is not valid. > I could send a sample email to anyone interested to test this.
Can you just save the sample mail in a file and link to it on yousendit, twango, etc. ? According to your other post, the only thing that has been tampered with is the end of line format. If so, it seems likely Thunderbird's behavior is the correct one according to S/MIME v3.1 (as well as older S/MIME versions) : http://rfc-ref.org/RFC-TEXTS/3851/chapter3.html#sub1sub1 3.1.1 Canonicalization Each MIME entity MUST be converted to a canonical form that is uniquely and unambiguously representable in the environment where the signature is created and the environment where the signature will be verified. [...] MIME entities of major type "text" must have both their line endings and character set canonicalized. The line ending must be the pair of characters <CR><LF> [...] _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
