From: Jan Rękorajski Date: Mon, 13 Apr 2009 17:41:16 +0000 (+0000) Subject: - safe defaults for S/MIME X-Git-Tag: auto/th/mutt-1_5_19-1~6 X-Git-Url: https://git.pld-linux.org/?p=packages%2Fmutt.git;a=commitdiff_plain;h=a8b0f0e7ab3be25aeb581054136b774762cd0a36 - safe defaults for S/MIME Changed files: mutt-smime.rc.patch -> 1.1 --- diff --git a/mutt-smime.rc.patch b/mutt-smime.rc.patch new file mode 100644 index 0000000..d4e111b --- /dev/null +++ b/mutt-smime.rc.patch @@ -0,0 +1,51 @@ +--- mutt-1.5.19/contrib/smime.rc~ 2008-03-19 21:07:57.000000000 +0100 ++++ mutt-1.5.19/contrib/smime.rc 2009-04-13 19:29:03.515858795 +0200 +@@ -4,7 +4,7 @@ + + # If you compiled mutt with support for both PGP and S/MIME, PGP + # will be the default method unless the following option is set +-set smime_is_default ++# set smime_is_default + + # Uncoment this if you don't want to set labels for certificates you add. + # unset smime_ask_cert_label +@@ -13,30 +13,31 @@ + set smime_timeout=300 + + # Global crypto options -- these affect PGP operations as well. +-set crypt_autosign = yes +-set crypt_replyencrypt = yes +-set crypt_replysign = yes +-set crypt_replysignencrypted = yes ++# set crypt_autosign = yes ++# set crypt_replyencrypt = yes ++# set crypt_replysign = yes ++# set crypt_replysignencrypted = yes + set crypt_verify_sig = yes + + # Section A: Key Management. + + # The (default) keyfile for signing/decrypting. Uncomment the following + # line and replace the keyid with your own. +-set smime_default_key="12345678.0" ++# set smime_default_key="12345678.0" + + # Uncommen to make mutt ask what key to use when trying to decrypt a message. + # It will use the default key above (if that was set) else. + # unset smime_decrypt_use_default_key + + # Path to a file or directory with trusted certificates +-set smime_ca_location="~/.smime/ca-bundle.crt" ++# set smime_ca_location="~/.smime/ca-bundle.crt" ++set smime_ca_location="/etc/certs/ca-certificates.crt" + + # Path to where all known certificates go. (must exist!) +-set smime_certificates="~/.smime/certificates" ++# set smime_certificates="~/.smime/certificates" + + # Path to where all private keys go. (must exist!) +-set smime_keys="~/.smime/keys" ++# set smime_keys="~/.smime/keys" + + # These are used to extract a certificate from a message. + # First generate a PKCS#7 structure from the message.