From: dac.override@gmail.com (Dominick Grift) Date: Fri, 2 Sep 2016 17:38:44 +0200 Subject: [refpolicy] [PATCH] gpg: public key signature verification in evolution In-Reply-To: <1472830263.21408.17.camel@trentalancia.net> References: <1472737946.17989.0.camel@trentalancia.net> <7958812d-93fe-ded7-fb23-6d02c150bcb3@ieee.org> <1472815602.23008.8.camel@trentalancia.net> <09e0ed56-7f4d-71e8-d970-acecc18e2376@gmail.com> <1472827326.21408.7.camel@trentalancia.net> <1472828561.21408.12.camel@trentalancia.net> <9bee257d-430a-0562-ee21-0dd2144c5519@gmail.com> <1472830263.21408.17.camel@trentalancia.net> Message-ID: <7bcda04a-f9c9-1ef1-3568-1b540c7fbb6f@gmail.com> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com On 09/02/2016 05:31 PM, Guido Trentalancia via refpolicy wrote: > On Fri, 02/09/2016 at 17.09 +0200, Dominick Grift via refpolicy wrote: >> On 09/02/2016 05:02 PM, Guido Trentalancia via refpolicy wrote: > > [...] > >>>>>>>> however eventually it probably need rw instead of r, For >>>>>>>> example >>>>>>>> when >>>>>>>> you sign emails. >>>>>>> >>>>>>> Let's try to sign this message and see if it also requires >>>>>>> write >>>>>>> permissions... >>>>> >>>>> It doesn't require write permissions, as it is evident in the >>>>> new >>>>> version of the patch. >>>>> >>>>>> >>>>>> >>>>>> is that PGP/MIME or in-line signing? I dont use evolution so >>>>>> not >>>>>> sure >>>>>> if >>>>>> it even support in-line signatures or PGP/MIME >>>>> >>>>> It's PGP signing. SMIME signing does not use gpg. >>>>> >>>> >>>> I think there is a misunderstanding PGP/MIME will (AFAIK) attach >>>> the >>>> signature in a separate file whereas in-line signing adds the >>>> signature >>>> to the actual message instead. >>> >>> Yes, it's openPGP/MIME. The same as in your messages. > >> Okay fine, I think it might need read/write if one encloses >> signatures >> in mail messages in-line > > This one seems to be difficult... > > It doesn't need the write permission for signing messages, whatever > signing method you choose. > > It only needs read permissions for signing messages ! > Okay, at least we now know. > Guido > > _______________________________________________ > refpolicy mailing list > refpolicy at oss.tresys.com > http://oss.tresys.com/mailman/listinfo/refpolicy > -- Key fingerprint = 5F4D 3CDB D3F8 3652 FBD8 02D5 3B6C 5F1D 2C7B 6B02 https://sks-keyservers.net/pks/lookup?op=get&search=0x3B6C5F1D2C7B6B02 Dominick Grift -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 648 bytes Desc: OpenPGP digital signature Url : http://oss.tresys.com/pipermail/refpolicy/attachments/20160902/56abf458/attachment-0001.bin