[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PGP to PC mail integration



-----BEGIN PGP SIGNED MESSAGE-----

An entity known as "E. ALLEN SMITH" <[email protected]>
writes:

>        You'd put something into the mail message itself that would tell
it
>"don't encrypt this" and/or "don't sign this". Hmm... you'd need to put
in
>messages to be signed and/or encrypted your passphrase, or have it gotten
some
>other way... which doesn't look very safe.

exmh on Unix systems goes the other way. It adds a header line that
includes the sender and recipient, plus the action to be performed
("encrypt," "sign" or "encryptsign"). No header, no encryption/signature.
I'm reasonably sure it strips off that line before it passes the message
off to sendmail -- but I usually don't send messages to myself that way. :-
)

For incoming mail, it looks for standard PGP structure and figures out what
it needs from the user. If, for instance, you don't have a public key on
your keyring, it allows you to send a mail message to a server to grab it -
- - otherwise it performs the operation and shows you the results.

If what you're doing requires a password (signing or decrypting), it pops
up a window to ask you for it. When it's done, it prompts you to press
Return and disappears.

It was written in tcl/Tk, but some of it may be applicable for what you
want to do. (Sorry, I'm not an expert on either.)

Scott

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQB1AwUBMTZk4evEnOI8TfM9AQGiKwL6A+XCKH68tfqJNE6cDRR7KClbXuSchBF3
UW6lY5ZzQIkZSTEKLm6EK2uEg6h9wafO38Dzm61PAdLZ0te67Kqtb4V4seTW4k4M
+YBLuUAiutVgZayj2OdrWjvlc43M495w
=GrDt
-----END PGP SIGNATURE-----