Tickets :: [#10246] improved encryption for s/mime

Summary	improved encryption for s/mime
Queue	IMP
Queue Version	5.0.7
Type	Enhancement
State	Resolved
Priority	1. Low
Owners	slusarz (at) horde (dot) org
Requester	peterirbizon (at) gmail (dot) com
Created	6/14/11 (5415 days ago)
Due
Updated	6/21/11 (5408 days ago)
Assigned
Resolved	6/21/11 (5408 days ago)
Milestone
Patch	No

21.06.2011 17:37:23	Michael Slusarz	Assigned to Michael Slusarz State ⇒ Resolved Milestone ⇒ Patch ⇒ No

21.06.2011 17:37:03	Git Commit	Comment #2	Reply to this comment
Changes have been made in Git for this ticket: ~~Request #10246~~: Use strongest cipher possible when encrypting S/MIME data. 2 files changed, 19 insertions(+), 9 deletions(-) http://git.horde.org/horde-git/-/commit/22e49e860c9b5d95d0efae1a981735334794ffd1

14.06.2011 22:15:54	peterirbizon (at) gmail (dot) com	Comment #1 Priority ⇒ 1. Low Type ⇒ Enhancement Summary ⇒ improved encryption for s/mime Due ⇒ 6/20/11 Queue ⇒ IMP Milestone ⇒ horde 4 Patch ⇒ Yes State ⇒ New	Reply to this comment
s/mime encrypted messages are encrypted with 40bit RC2 only. I found in /lib/Horde/Crypt smime.php (horde 3) line if (openssl_pkcs7_encrypt($input, $output, $params['pubkey'], array('To' => $email))) and changed it to if (openssl_pkcs7_encrypt($input, $output, $params['pubkey'], array('To' => $email),0,4)) { this provides 3DES 168bit encryption for seä-mime email messages. probably it will work in horde 4 as well.