Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Avatar for Username

Pesquisar no apoio

Evite burlas no apoio. Nunca iremos solicitar que telefone ou envie uma mensagem de texto para um número de telefone ou que partilhe informações pessoais. Por favor, reporte atividades suspeitas utilizando a opção "Reportar abuso".

Saber mais

Esta discussão foi arquivada. Se precisar de ajuda, por favor, coloque uma nova questão.

How can I override the restriction on the email address of a PKI signing certificate matching the mail account?

  • 2 respostas
  • 1 tem este problema
  • 1 visualização
  • Última resposta por manchesterj

manchesterj
manchesterj
more options

I have used Thunderbird successfully to access multiple mails accounts; one individual mail account, the others are used by multiple people.

I use PKI certificates to send signed emails. My PKI certificates all have the email address of my individual mail account. In the past, I have been able to send signed emails with those certificates from other mail accounts. (The recipient will see the signature as questionable, but can examine the signing certificate to determine the authenticity of the sender.)

Thunderbird is not allowing me to select a certificate unless the email address in the certificate matches the email address of the mail account. Is there any way to override this?

I have used Thunderbird successfully to access multiple mails accounts; one individual mail account, the others are used by multiple people. I use PKI certificates to send signed emails. My PKI certificates all have the email address of my individual mail account. In the past, I have been able to send signed emails with those certificates from other mail accounts. (The recipient will see the signature as questionable, but can examine the signing certificate to determine the authenticity of the sender.) Thunderbird is not allowing me to select a certificate unless the email address in the certificate matches the email address of the mail account. Is there any way to override this?

Todas as respostas (2)

Matt
Matt
  • Moderator
  • Top 10 Contributor
more options

I would be rather disappointed if there was a way to over ride it. Sounds to me like someone has fixed a bug.

manchesterj
manchesterj Proprietário da pergunta
more options

I disagree. It would only be a bug if the person receiving the email did not clearly see an indication that the signature on the email is "invalid" (or at least 'suspect'). But recipients do see that indication.

Mozilla actually makes a habit of allowing for people to override security constraints. (Usually in that config file.)