Closed Bug 1623564 Opened 5 years ago Closed 2 years ago

unable to import self-signed recipient encryption certificate

Categories

(MailNews Core :: Security: S/MIME, defect)

Product:
MailNews Core
Component:
Security: S/MIME
Type:
defect

Tracking

(Not tracked)

Status:
RESOLVED WONTFIX

People

(Reporter: hauser, Unassigned)

Details

Attachments

(2 files)

self-Sig2-cyLg@my-d.org.crt
1.95 KB, application/x-x509-ca-cert
Details
selfSig-cyLg@my-d.org.crt
2.00 KB, application/x-x509-ca-cert
Details

User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.132 Safari/537.36

Steps to reproduce:

http://kb.mozillazine.org/Installing_an_SMIME_certificate says to import such a certificate in the authorities tab and not "other people"
i) I tried to import the attached into Authorities

Actual results:

a) I got an error "This is nota certificate authority certificate, so it can't be imported into the certificate authority list"

Expected results:

  1. Say which attributes the recipient has to add to his certifcate and
  2. add a link to a help page that explains how to do that (e.g. with openssl, xca, https://github.com/kaikramer/keystore-explorer ...)

It does work for recipient selfSig-cyLg@my-d.org (except that I cannot see it as per bug 956480 nor does import into "other people" do anything/not even an error), so

  1. IMHO the approach suggested in MozillaZine is fundamentally flawed since while I want to reach selfSig-cyLg@my-d.org in an encrypted way, I do not necessarily trust her/him to issue valid mail certificates for others!

see also Bug 1623568

Type: enhancement → defect
Component: Untriaged → Security

Because this bug's Severity has not been changed from the default since it was filed, and it's Priority is -- (Backlog,) indicating it has has not been previously triaged, the bug's Severity is being updated to -- (default, untriaged.)

Because this bug's Severity has not been changed from the default since it was filed, and it's Priority is -- (Backlog,) indicating it has has not been previously triaged, the bug's Severity is being updated to -- (default, untriaged.)

Because this bug's Severity has not been changed from the default since it was filed, and it's Priority is -- (Backlog,) indicating it has has not been previously triaged, the bug's Severity is being updated to -- (default, untriaged.)

Severity: normal → S3

The severity of these bugs was changed, mistakenly, from normal to S3.

Because these bugs have a priority of --, indicating that they have not been previously triaged, these bugs should be changed to Severity of --.

Severity: S3 → --

Let's mark this wontfix. If you don't want to use certificate authorities, use OpenPGP instead of S/MIME.

Component: Security → Security: S/MIME
Product: Thunderbird → MailNews Core
Status: UNCONFIRMED → RESOLVED
Closed: 2 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: