Subject: Re: NetBSD Security Advisory 2002-009: Multiple vulnerabilities in OpenSSL code
To: Ignatios Souvatzis <is@netbsd.org>
From: Olaf Seibert <rhialto@polderland.nl>
List: tech-security
Date: 08/03/2002 00:55:55
On Fri 02 Aug 2002 at 22:11:12 +0200, Ignatios Souvatzis wrote:
> I'd auto-check them if they had proper PGP/MIME headers...
Mutt auto-checked this one for me - so perhaps it is not necessary?
I did add one mutt-suggested idea to my .procmailrc to change the
Content-Type header:
##
## PGP (from /usr/pkg/share/doc/mutt/PGP-Notes.txt)
##
:0
* !^Content-Type: message/
* !^Content-Type: multipart/
* !^Content-Type: application/pgp
{
:0 fBw
* ^-----BEGIN PGP MESSAGE-----
* ^-----END PGP MESSAGE-----
| formail \
-i "Content-Type: application/pgp; format=text; x-action=encrypt"
:0 fBw
* ^-----BEGIN PGP SIGNED MESSAGE-----
* ^-----BEGIN PGP SIGNATURE-----
* ^-----END PGP SIGNATURE-----
| formail \
-i "Content-Type: application/pgp; format=text; x-action=sign"
}
Looking at my mailbox suggests that this recipe has done its job here to
get Mutt to check the signature (there is a line "Old-Content-Type:
text/plain; charset=us-ascii" in the header now).
Looking at PGP-Notes.txt again I see there seem to be even better
options available now.
> -is
-Olaf.
--
___ Olaf 'Rhialto' Seibert - rhialto@ -- Woe betide the one who feels
\X/ polderland.nl -- remorse without sin - Tom Poes, "Het boze oog", 4444.