Summary: | signed pgp/mime mail with expired key shows bad signature | ||
---|---|---|---|
Product: | [Unmaintained] kmail | Reporter: | Juan F. Codagnone <juan-open> |
Component: | encryption | Assignee: | kdepim bugs <kdepim-bugs> |
Status: | RESOLVED DUPLICATE | ||
Severity: | normal | CC: | dwmw2, juan-open |
Priority: | NOR | ||
Version: | unspecified | ||
Target Milestone: | --- | ||
Platform: | Compiled Sources | ||
OS: | Linux | ||
Latest Commit: | Version Fixed In: | ||
Sentry Crash Report: |
Description
Juan F. Codagnone
2003-06-11 00:28:46 UTC
i forgot to say the most important thing (and yes the code i paste has nothing to do with the red mark). Using the inline pgp signature, "i get he signature is valid, but the key's validity is unknown." and a yellow mark. The yellow mark is correct behaviour, as far as I can tell from your description. Note that what you call "inline" actually is PGP/MIME and thus OpenPGP conformant. So is KMail at fault here or isn't it? Can someone with more knowledge of pgp semantics comment, please? *** Bug 123288 has been marked as a duplicate of this bug. *** > So is KMail at fault here or isn't it?
I see it as a KMail fault ... the signature is valid - if the email was *sent (and signed) before the expiration date then the signature cannot be invalidated just because time passes; the signature would be invalid if it was *created*, not read, after the expiration date
imagine a real world example - you sign some agreement for a limited time frame, e.g. one year; after some more years things go wrong and the agreement becomes important at court ... could you imagine that the judge says, looking at the paper with your signature, that the signature is invalid, the ink on the paper (and the record at the attorney) cannot be taken as a proof that you signed it, just because the agreement has expired a few years in the past?
This is basically a request for more types of trust visualisation. Because of this I'll mark this as a duplicate of a newer bug which in fact asks for a superset of features that would also solve this problem. *** This bug has been marked as a duplicate of 64424 *** |