Hello, Jens Lechtenboerger <jens.lechtenboer...@fsfe.org> writes:
> There is. Before coming to that, please reconsider for what you > ask: Alice sends a message to Bob, but the message is signed by > Mallory. What is Bob supposed to do with this? Yes, I realized after I sent the message that this was going to be confusing. I managed to do it by setting 'mml-secure-smime-sign-with-sender' to nil, so that I could then choose the certificate, but Gmail (for example) complains about the mail address in the certificate not being the same as the "From" address, so probably not a good idea in general. > IMO, the signature should really match the sender’s FROM address. > Maybe you can ask your CA to include your other e-mail addresses as > well? Or switch to GnuPG for your other e-mail addresses, where you > are in control and not some CA (which Bob probably does neither know > nor trust anyways)? See [1] for more information. So, I was actually thinking of going for the second option: use SMIME when I send from the address in the certificate, and use PGP when sending from this gmail address. But now I need to figure out how to tell Gnus to do that. Right now I have the following, which makes sure that by default I will be always signing with SMIME. Do you know if there is an easy way to set these depending on the "From" address? ,---- | (add-hook 'gnus-message-setup-hook 'mml-secure-message-sign-smime) | (setq mml-secure-method "smime") `---- Cheers, -- Ángel de Vicente -- (GPG: 0x64D9FDAE7CD5E939) Research Software Engineer (Supercomputing and BigData) Instituto de Astrofísica de Canarias (https://www.iac.es/en)
signature.asc
Description: PGP signature
