The mailing list for listmasters using Sympa

[Peter Farmer <address@concealed>]

Serge,

On Wednesday 23 August 2006 2:40 pm, you wrote:

>
> User certs are automatically catched by Sympa when receiving a signed
> s/mime messsage so if Sympa needs to send encrypted message to this user
> it can perform encryption using this certificate. This is works but it's
> not conform to the PKI theory : Sympa should be able to search for user
> certificates using PKI certificate directory (LDAP) .
>
> That's why Sympa test the key usage certificate attribute to known if
> the certificate allow both encryption and signature.
>
> Certificate are stored as PEM file on /home/sympa/expl/X509-user-certs .
> Files are named address@concealed@enc or address@concealed@sign  (@enc and
> @sign suffix are used according to certificates usage.  No tool other
> tool is provided by Sympa in order to collect this certificate
> repository but you can easily imagine you own tool to create thoses
> files.
>
> Hope this help.

Yes it does - thank you !. Thats what I needed to know. In fact I've just 
been looking at the code in tools.pl and was slowly forming an 
understanding in my thick skull of how it works, and that corresponds with 
what your telling me now - so my ignorance has been doubly confirmed 8-)

I appreciate you taking the time to help educate me 

regards
Peter Farmer