Tickets :: [#10246] improved encryption for s/mime

Summary	improved encryption for s/mime
Queue	IMP
Queue Version	5.0.7
Type	Enhancement
State	Resolved
Priority	1. Low
Owners	slusarz (at) horde (dot) org
Requester	peterirbizon (at) gmail (dot) com
Created	06/14/2011 (5160 days ago)
Due
Updated	06/21/2011 (5153 days ago)
Assigned
Resolved	06/21/2011 (5153 days ago)
Milestone
Patch	No

06/21/2011 05:37:23 PM	Michael Slusarz	Assigned to Michael Slusarz State ⇒ Resolved Milestone ⇒ Patch ⇒ No

06/21/2011 05:37:03 PM	Git Commit	Comment #2	Reply to this comment
Changes have been made in Git for this ticket: ~~Request #10246~~: Use strongest cipher possible when encrypting S/MIME data. 2 files changed, 19 insertions(+), 9 deletions(-) http://git.horde.org/horde-git/-/commit/22e49e860c9b5d95d0efae1a981735334794ffd1

06/14/2011 10:15:54 PM	peterirbizon (at) gmail (dot) com	Comment #1 Priority ⇒ 1. Low Type ⇒ Enhancement Summary ⇒ improved encryption for s/mime Due ⇒ 06/20/2011 Queue ⇒ IMP Milestone ⇒ horde 4 Patch ⇒ Yes State ⇒ New	Reply to this comment
s/mime encrypted messages are encrypted with 40bit RC2 only. I found in /lib/Horde/Crypt smime.php (horde 3) line if (openssl_pkcs7_encrypt($input, $output, $params['pubkey'], array('To' => $email))) and changed it to if (openssl_pkcs7_encrypt($input, $output, $params['pubkey'], array('To' => $email),0,4)) { this provides 3DES 168bit encryption for seä-mime email messages. probably it will work in horde 4 as well.