Thomas Zeiser

Some comments by Thomas Zeiser about HPC@RRZE and other things

Content

mutt and smime (encryption/signing)

mutt and smime (encryption/signing)
After receiving my Grid certificate I just wanted to use this certificate for signing or encrypting mails. With Thunderbird this is no problem – just include it into your keystore. However, with my favorite mail tool “mutt” I did not yet manage to get the complete certificate chain in 🙂

Keystore with complete certificate chain required:

once the complete certificate chain is available in the keystore, smime_keys add_p12 KEYSTORE works fine. Check
http://www.rrze.uni-erlangen.de/dienste/arbeiten-rechnen/hpc/grid/zertifikate.shtml for a detailed description on how to create a keystore with complete certificate chain.

However, you still need to add the CA certs with smime_keys add_root PCA.pem and smime_keys add_root UserCA.pem before add_p12 succeeds.

Further references:

  • http://wiki.austriangrid.at/index.php/Certificate_installation_in_mutt
  • http://kb.wisc.edu/middleware/page.php?id=4091
  • and a little patch to make smime_keys work with certain mutt versions: http://launchpadlibrarian.net/20204370/smime_keys-1.5.17%2B20080114-1ubuntu1.diff