On 6/17/24 20:21, Henning Hraban Ramm wrote: >> [...] > Can confirm.
Many thanks for your testing, Hraban. > Before patching, I checked with … > – Acrobat Reader: doesn’t recognize a signature > – Foxit Reader: "a signature is invalid" The signature is invalid since it leaves an space outside the signing range. > After patching, I checked with … > – Acrobat Reader: doesn’t recognize a signature > – Foxit Reader: "there’s something wrong with a signature" (i.e. > different message) The certificate is self-signed. Its validity (not the correctness of the signature) is problematic to say the least. > – PDF Studio Pro 2023: shows signature, "don’t know if valid, issuer > unknown" etc. Again, as a certificate, this is a crappy. But this detects document modifications after being signed. Just in case Hans reads the message: It would be great that OpenSSL asks for the password directly. This is a basic security issue, not to leave plain-text passwords on the terminal. Many thanks for your help, Pablo ___________________________________________________________________________________ If your question is of interest to others as well, please add an entry to the Wiki! maillist : ntg-context@ntg.nl / https://mailman.ntg.nl/mailman3/lists/ntg-context.ntg.nl webpage : https://www.pragma-ade.nl / https://context.aanhet.net (mirror) archive : https://github.com/contextgarden/context wiki : https://wiki.contextgarden.net ___________________________________________________________________________________