makefu/euer_blog
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
euer_blog/content/posts/smime-and-mutt.md
makefu d2ff51546f initial vomit
2014-02-14 16:06:50 +01:00

4.4 KiB
Raw Blame History

Title: S/MIME and Mutt Date: 2012-02-01 16:32 Slug: smime-and-mutt

This is the PoC shell code for exchaning encrypted mails with MS Outlook.

enable smime for mutt

+--------------------------------------+--------------------------------------+ | {.line-numbers} | #?/bin/shecho "source /usr/share | | 1234567891011121314151617181920 | /doc/mutt/samples/smime.rc" >> ~/.mu | | | ttrcsmime_keys init# create private | | | CA and derive mail certificate (see | | | below)# OR # get free trusted certi | | | ficate from # http://www.comod | | | o.com/home/email-security/free-email | | | -certificate.phpsmime_keys add_p12 m | | | ail.p12echo 'set smime_default_key=" | | | "' >> ~/.muttrcwge | | | t http://services.support.alcatel-lu | | | cent.com/PKI/rootCA.crtsmime_keys ad | | | d_root rootCA.crtmutt# receive signe | | | d mail of crypto partner## CTRL-K# f | | | ix the ~/.smime/certificates/.index | | | as extraction of complete chains # d | | | oes not work correctly as of today ( | | | 31.01.2012) see Mutt #3559 | +--------------------------------------+--------------------------------------+

Create own CA

+--------------------------------------+--------------------------------------+ | {.line-numbers} | mkdir caopenssl req -new -x509 - | | 123456789101112131415161718192021222 | keyout ca/root_encrypted.key -out ca | | 324252627282930313233343536373839404 | /root.pem -days 9001openssl rsa -in | | 142 | ca/root_encrypted.key > ca/root.keyr | | | m ca/root_encrypted.keycat > root.cn | | | f <<EOF[ ca ]default_ca = ca_default | | | [ ca_default ]dir = ./cacerts = $dir | | | new_certs_dir = $dir/ca.db.certsdata | | | base = $dir/ca.db.indexserial = $dir | | | /ca.db.serialRANDFILE = $dir/ca.db.r | | | andcertificate = $dir/ca.crtprivate_ | | | key = $dir/ca.keydefault_days = 365d | | | efault_crl_days = 30default_md = md5 | | | preserve = nopolicy = generic_policy | | | [ generic_policy ]countryName = opti | | | onalstateOrProvinceName = optionallo | | | calityName = optionalorganizationNam | | | e = optionalorganizationalUnitName = | | | optionalcommonName = suppliedemailA | | | ddress = optionalEOFecho '100001' >c | | | a/ca.db.serialtouch ./ca/ca.db.index | | | mkdir ./ca/ca.db.certsopenssl req -n | | | ew -keyout mail.key -out mail.csr -d | | | ays 9001openssl ca -config root.cnf | | | -out mail.crt -infiles mail.csropens | | | sl pkcs12 -export -inkey mail.key -c | | | ertfile ca/root.crt -out mail.p12 -i | | | n mail.crtsmime_keys add_root ca/roo | | | t.crtsmime_keys add_cert ca/root.crt | +--------------------------------------+--------------------------------------+