|
Posted by imhotep on September 5, 2006, 6:40 pm
If you were Registered and logged in, you could reply and use other advanced thread options
> I interpret that he is suggesting his mail virus scanner is appending
> his messages with a statement that the message has been "scanned by xyz
> scanner", as I have seen by many virus scanners do. I have seen this a
> lot with incoming mail, myself.
>
> I would be interested to see an answer to this question myself.
>
> If a mail scanner is appending messages with predefined text
> (especially, signed or encrypted messages), will that change cause an
> error at the recipients end as indicating the signed message has been
> altered?
I have seen this also. For example SpamAssassin can have this affect (it
adds a field in the header "X-Spam-Score". I would say any alteration of
the email message would cause this error. Once you sign a message you can
not change a single bit (it will fail the check).
You hit upon a good point, I would guess that this is probably the
culprit...
--Imhotep
>
> Tks - Jeff
>
>
> imhotep wrote:
>> pretzel wrote:
>>
>> > Dear All,
>> >
>> > We are testing out Digital Certificates as a prelude to Secure
>> > Messaging with some of our Clients.
>> >
>> > We obtained individual certificates for ourselves (as there is not many
>> > of us) but started our Client on a Business account with a CA.
>> >
>> > After setting up one of their users we notice that most times their
>> > email is fine, but other times instead of the usual "rosette" there is
>> > a red line and
>> > the statement "There are problems with the signature. Click the
>> > signature button for details."
>> >
>> > The message in the Security Properties is "Error: The message contents
>> > RSA/SHA1 at 15:05:47 16/08/2006."
>> >
>> > As we use an external mail filter (so all our mail is scanned in
>> > transit) we believe that the scanning by our mail filter is causing the
>> > Digital Certificate to detect a modification (or attempt) and hence the
>> > error.
>> >
>> > My questions are:
>> >
>> > 1) Is the above assumption correct, and this is normal?
>>
>> Don't quite see how you came to the conclusion the your external mail
>> gateway is causing this. Are you guessing?
>>
>> > 2) Is there anything that can be done to elimiate this (if caused by an
>> > external mail scanner perhaps not)
>>
>> You need to do more research. Look at your logs. Look for some type of
>> error code. Something.
>>
>> > 3)If we move to Secure Messaging where the email is encrypted and hence
>> > cannot be scanned by our mail filter, should I presume that the above
>> > error
>> > will not appear and that all will be OK (at least as much as it should
>> > be)?
>>
>>
>> Again, you *REALLY* don't know what the error is. You seem to be
>> "shooting in the dark". Review your logs and get a better handle on
>> understanding the problem *BEFORE* you try fixing the problem.
>>
>> Send you emails log files....
>>
>> > thanks
>> >
>> > -----
>> > pbw
>>
>>
>> Imhotep
| 
XML site map