| Summary: | possibility to encrypt stuff with a x509 without having its issuer certificate installed | ||
|---|---|---|---|
| Product: | [Applications] kleopatra | Reporter: | frederik.gelder |
| Component: | general | Assignee: | Emanuel Schütze <emanuel> |
| Status: | ASSIGNED --- | ||
| Severity: | minor | CC: | emanuel, kleopatra-rh, mutz |
| Priority: | NOR | ||
| Version: | 2.1.0 | ||
| Target Milestone: | --- | ||
| Platform: | unspecified | ||
| OS: | Microsoft Windows | ||
| Latest Commit: | Version Fixed In: | ||
| Sentry Crash Report: | |||
| Attachments: | missingIssuer.png | ||
|
Description
frederik.gelder
2012-10-11 13:01:40 UTC
For using X.509 certificate you have to import the whole certificate chain and mark root certificate trustable (e.g. with 'allow mark trusted' option). But I'll check it with current Kleopatra (and Gpg4win) if you want encrypt only. Created attachment 94255 [details]
missingIssuer.png
it would really be great if that "full certificate path" requirement could be overridden.
The S/MIME standard does allow to encrypt also without the full chain being present
see also Bug 351881 see also bug 352033 see also Bug 352037 Thank you for the bug report. As this report hasn't seen any changes in 5 years or more, we ask if you can please confirm that the issue still persists. If this bug is no longer persisting or relevant please change the status to resolved. |