6.0.0-alpha14
7/3/25

[#10246] improved encryption for s/mime
Summary improved encryption for s/mime
Queue IMP
Queue Version 5.0.7
Type Enhancement
State Resolved
Priority 1. Low
Owners slusarz (at) horde (dot) org
Requester peterirbizon (at) gmail (dot) com
Created 06/14/2011 (5133 days ago)
Due
Updated 06/21/2011 (5126 days ago)
Assigned
Resolved 06/21/2011 (5126 days ago)
Milestone
Patch No

History
06/21/2011 05:37:23 PM Michael Slusarz Assigned to Michael Slusarz
State ⇒ Resolved
Milestone ⇒
Patch ⇒ No
 
06/21/2011 05:37:03 PM Git Commit Comment #2 Reply to this comment
Changes have been made in Git for this ticket:

Request #10246: Use strongest cipher possible when encrypting S/MIME data.

  2 files changed, 19 insertions(+), 9 deletions(-)
http://git.horde.org/horde-git/-/commit/22e49e860c9b5d95d0efae1a981735334794ffd1
06/14/2011 10:15:54 PM peterirbizon (at) gmail (dot) com Comment #1
Priority ⇒ 1. Low
Type ⇒ Enhancement
Summary ⇒ improved encryption for s/mime
Due ⇒ 06/20/2011
Queue ⇒ IMP
Milestone ⇒ horde 4
Patch ⇒ Yes
State ⇒ New
Reply to this comment
  s/mime encrypted messages are encrypted with 40bit RC2 only. I
found in  /lib/Horde/Crypt smime.php (horde 3) line
if (openssl_pkcs7_encrypt($input, $output, $params['pubkey'], 
array('To' => $email)))
and changed it to
if (openssl_pkcs7_encrypt($input, $output, $params['pubkey'], 
array('To' => $email),0,4)) {
this provides 3DES 168bit encryption for seƤ-mime email messages. 
probably it will work in horde 4 as well.

Saved Queries