TechHub

Bitnapper 🏳️‍🌈⁣🇪🇺⁣🦕 ⁣🐈 ⁣Kennt sich jemand eingehender mit der technischen Umsetzung von Passwortmanagern aus. Mich interessiert die über ein HSM-gesicherte Ablage von Keys, Nichtexportierbarkeit von bestimmten Keys und Verwendung als Middleware für S/MIME, Signatur- und Authentifizierungszertifikaten. Ich habe bisher nicht viel darüber gefunden und würde gerne wissen ob es technische Gründe dafür gibt oder eher an dem mangelnden Bedarf liegt. <a href="https://chaos.social/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a> <a href="https://chaos.social/tags/passwordmanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwordmanager</a> <a href="https://chaos.social/tags/hsm" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hsm</a>

bricksWusstet ihr, dass ihr bei posteo.de für gerade einmal 1 Cent/Tag ein S/MIME-Zertifikat für euer Postfach erhaltet? Ich bin dort schon seit vielen Jahren zufriedener Kunde. Technisch sind sie dem Markt oft voraus, alles super transparent, faire Preise, Datenschutz wird groß geschrieben und die Server laufen mit grünem Strom.Könnte man jetzt noch die eigene Domain mitbringen, wäre es perfekt.Klingt wie Werbung, ist es aber nicht ☺️<a href="https://det.social/tags/Produktempfehlung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Produktempfehlung</a> <a href="https://det.social/tags/EMail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EMail</a> <a href="https://det.social/tags/Datenschutz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Datenschutz</a> <a href="https://det.social/tags/Verschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Verschlüsselung</a> <a href="https://det.social/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a>

Hella<a href="https://social.tchncs.de/@klausgesprochen" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@klausgesprochen</a> <a href="https://social.mailbox.org/@mailbox_org" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mailbox_org</a> Anscheinend geht <a href="https://social.tchncs.de/tags/SMime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMime</a> bei <a href="https://social.tchncs.de/tags/MailboxOrg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MailboxOrg</a> noch nicht direkt: "Wir haben die Integration von S/MIME auf dem Plan, können aber über den Zeitpunkt der Umsetzung noch keine verbindliche Aussage treffen."<a href="https://kb.mailbox.org/de/privat/e-mail/smime-beim-verschluesselten-postfach" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://kb.mailbox.org/de/privat/e-mail/smime-beim-verschluesselten-postfach</a>

Karl Voit :emacs: :orgmode:If you need <a href="https://graz.social/tags/E2EE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#E2EE</a> via <a href="https://graz.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a>, the only 2 valid standards are <a href="https://graz.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenPGP</a> and <a href="https://graz.social/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a>. It's not that those are without issues but everything else is mediocre.Yes, you can switch to non-email-services as well such as <a href="https://graz.social/tags/Signal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Signal</a>. But that's a different island.<a href="https://graz.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://graz.social/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#encryption</a> <a href="https://graz.social/tags/mail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mail</a> <a href="https://graz.social/tags/GMail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GMail</a>

Ian Brown 👨🏻‍💻UPDATE: it’s the former. Google says: “When the recipient has S/MIME configured, Gmail sends an <a href="https://eupolicy.social/tags/E2EE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#E2EE</a> email via <a href="https://eupolicy.social/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> (just like it does today).” ✅ <a href="https://workspace.google.com/blog/identity-and-security/gmail-easy-end-to-end-encryption-all-businesses" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://workspace.google.com/blog/identity-and-security/gmail-easy-end-to-end-encryption-all-businesses</a>

Ian Brown 👨🏻‍💻GO GOOGLE! 🥳 <a href="https://eupolicy.social/tags/E2EE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#E2EE</a> <a href="https://eupolicy.social/tags/gmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#gmail</a> <a href="https://eupolicy.social/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> <a href="https://workspace.google.com/blog/identity-and-security/gmail-easy-end-to-end-encryption-all-businesses" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://workspace.google.com/blog/identity-and-security/gmail-easy-end-to-end-encryption-all-businesses</a>

Juergen M. Bruckner<a href="https://orfodon.org/@ORF_Kaernten" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@ORF_Kaernten</a> Noch ein Grund mehr warum man im geschäftlichen e-Mail-Verkehr auf signierte und/oder verschlüsselte e-Mails setzen sollte. Dann lässt sich so etwas nicht ganz vermeiden, aber die Sicherheit steigt.<a href="https://mastodon.bruckner.email/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.bruckner.email/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a> <a href="https://mastodon.bruckner.email/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#encryption</a> <a href="https://mastodon.bruckner.email/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a> <a href="https://mastodon.bruckner.email/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> <a href="https://mastodon.bruckner.email/tags/digitalsignature" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#digitalsignature</a>

Emory<a href="https://snug.town/@ducksauz" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@ducksauz</a> my lawyers were getting my emails in spam folders and i thought it was because i am self-sovereign on PKI and i use an <a href="https://soc.kvet.ch/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a> cert signed by my offline CA in the safe 😆 but apparently it was just "dmarc is weird gonna quarantine", i need to see if i have it wrong on all of them. hellyeah has been around forever and is at G, so probably okay by association but axiopisty org|com are delivering to iCloud for me.

ZIM der HHUAb sofort können über den neuen Anbieter Harica S/MIME-Nutzerzertifikate zum Signieren von E-Mails an der <a href="https://nrw.social/@HHU" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@HHU</a> beantragt werden. Eine Anleitung im Wiki ist angelegt: <a href="https://wiki.hhu.de/x/O4IMM" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://wiki.hhu.de/x/O4IMM</a> Die Anleitung für Gruppenzertifikate (für Funktionsmailadressen) folgt noch. <a href="https://mastodon.social/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> <a href="https://mastodon.social/tags/Zertifikate" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Zertifikate</a>

LucaDoes anybody have a good link for a „How to create detailed <a href="https://troet.cafe/tags/thunderbird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#thunderbird</a> logs“? I don’t really get how to do it.I need detailed information what decisions Thunderbird „makes“ in terms of <a href="https://troet.cafe/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a>/signatures/verification when opening a mail.<a href="https://troet.cafe/tags/logging" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#logging</a> <a href="https://troet.cafe/tags/foss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#foss</a> <a href="https://troet.cafe/tags/mozilla" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mozilla</a>

NetzpalaverE-Mail-Sicherheit bleibt Dreh- und Angelpunkt der Cybersicherheit<a href="https://social.tchncs.de/tags/Cybersicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersicherheit</a> <a href="https://social.tchncs.de/tags/EMail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EMail</a> <a href="https://social.tchncs.de/tags/EMailSicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EMailSicherheit</a> <a href="https://social.tchncs.de/tags/k%C3%BCnstlicheIntelligenz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#künstlicheIntelligenz</a> <a href="https://social.tchncs.de/tags/NIS2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NIS2</a> <a href="https://social.tchncs.de/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenPGP</a> <a href="https://social.tchncs.de/tags/Phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Phishing</a> <a href="https://social.tchncs.de/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> <a href="https://social.tchncs.de/tags/SecurityAwareness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SecurityAwareness</a> <a href="https://social.tchncs.de/tags/Seppmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Seppmail</a> <a href="https://social.tchncs.de/tags/Sicherheitsstrategie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Sicherheitsstrategie</a> <a href="https://social.tchncs.de/tags/Verschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Verschlüsselung</a><a href="https://netzpalaver.de/2025/01/21/e-mail-sicherheit-bleibt-dreh-und-angelpunkt-der-cybersicherheit/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://netzpalaver.de/2025/01/21/e-mail-sicherheit-bleibt-dreh-und-angelpunkt-der-cybersicherheit/</a>

Emoryand i use S/MIME with a cert signed by the household authority for KVET-CH and gnupg if people are into that, i really like that Mail.app does a good job with S/MIME. i don't know any other <a href="https://soc.kvet.ch/tags/MUA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MUA</a> for <a href="https://soc.kvet.ch/tags/iOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iOS</a> that does! <a href="https://soc.kvet.ch/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a> <a href="https://soc.kvet.ch/tags/emailSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#emailSecurity</a> <a href="https://soc.kvet.ch/tags/fastmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fastmail</a> <a href="https://soc.kvet.ch/tags/maskedEmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#maskedEmail</a> <a href="https://soc.kvet.ch/tags/1password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#1password</a> <a href="https://soc.kvet.ch/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://soc.kvet.ch/tags/synology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#synology</a> <a href="https://soc.kvet.ch/tags/mutt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mutt</a> <a href="https://soc.kvet.ch/tags/MUAs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MUAs</a>

George Ellenburg (he/him/his)Hands down the best part about switching away from <a href="https://bofh.social/tags/Microsoft" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://bofh.social/tags/Windows" rel="nofollow noopener noreferrer" target="_blank">#Windows</a> and onto <a href="https://bofh.social/tags/LinuxMint" rel="nofollow noopener noreferrer" target="_blank">#LinuxMint</a> is <a href="https://bofh.social/tags/Evolution" rel="nofollow noopener noreferrer" target="_blank">#Evolution</a>. Evolution blows <a href="https://bofh.social/tags/Thunderbird" rel="nofollow noopener noreferrer" target="_blank">#Thunderbird</a> completely out of the water in just about every imaginable sense. If <a href="https://bofh.social/tags/GNU" rel="nofollow noopener noreferrer" target="_blank">#GNU</a> came out with a native Windows version of Evolution they would blow both <a href="https://bofh.social/tags/Outlook" rel="nofollow noopener noreferrer" target="_blank">#Outlook</a> and Thunderbird out of the water. There simply is no comparison. And the best part? <a href="https://bofh.social/tags/PGP" rel="nofollow noopener noreferrer" target="_blank">#PGP</a>/ <a href="https://bofh.social/tags/GnuPG" rel="nofollow noopener noreferrer" target="_blank">#GnuPG</a> and <a href="https://bofh.social/tags/SMIME" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> support built-in and out-of-the-box! No add-ons or plugins required. I mean, <a href="https://bofh.social/tags/Kmail" rel="nofollow noopener noreferrer" target="_blank">#Kmail</a> is nice, but it doesn't even come close. <a href="https://en.wikipedia.org/wiki/GNOME_Evolution" rel="nofollow noopener noreferrer" target="_blank">https://en.wikipedia.org/wiki/GNOME_Evolution</a>

9Lukas5 🚂 🐧Just fixed my private <-> work SMIME encryption (stopped somehow to work some time ago)Is <a href="https://mastodontech.de/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> able to use <a href="https://mastodontech.de/tags/ellipticcurves" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ellipticcurves</a> ? 🤔 For my <a href="https://mastodontech.de/tags/PGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PGP</a> keys that's a no-brainer to do, but with openssl doing CA, key, CSR and cert I couldn't get it to work 😬<a href="https://mastodontech.de/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#encryption</a> <a href="https://mastodontech.de/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> <a href="https://mastodontech.de/tags/ellipticcurves" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ellipticcurves</a> <a href="https://mastodontech.de/tags/Thunderbird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Thunderbird</a> <a href="https://mastodontech.de/tags/Outlook" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Outlook</a>

Emorymy former employer's email service thinks S/MIME signed emails are sus and puts my emails into Junk. unsigned emails sail into the inbox. who the hell sets up an email service and decides authenticated emails are junkmail lol?(no i didn't try p/gnu/PG. i prefer S/MIME cuz it's built-in to Mail.app on everything i own.)<a href="https://soc.kvet.ch/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> <a href="https://soc.kvet.ch/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#encryption</a> <a href="https://soc.kvet.ch/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#smime</a>

George Ellenburg (he/him/his)<a href="https://bofh.social/tags/AskFedi" rel="nofollow noopener noreferrer" target="_blank">#AskFedi</a> - I need a new <a href="https://bofh.social/tags/SMIME" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> <a href="https://bofh.social/tags/cert" rel="nofollow noopener noreferrer" target="_blank">#cert</a> for my <a href="https://bofh.social/tags/email" rel="nofollow noopener noreferrer" target="_blank">#email</a>. My old cert has been expired for well over a year now it looks like. Oops. ;-) Is <a href="https://bofh.social/tags/GlobalSign" rel="nofollow noopener noreferrer" target="_blank">#GlobalSign</a> still the recommended <a href="https://bofh.social/tags/CA" rel="nofollow noopener noreferrer" target="_blank">#CA</a> for globally-trusted SMIME certs? If not, what CA would you recommend? <a href="https://bofh.social/tags/EmailEncryption" rel="nofollow noopener noreferrer" target="_blank">#EmailEncryption</a> <a href="https://bofh.social/tags/EmailSecurity" rel="nofollow noopener noreferrer" target="_blank">#EmailSecurity</a> <a href="https://bofh.social/tags/DigitalSignatures" rel="nofollow noopener noreferrer" target="_blank">#DigitalSignatures</a> <a href="https://bofh.social/tags/InfoSec" rel="nofollow noopener noreferrer" target="_blank">#InfoSec</a> <a href="https://bofh.social/tags/PKI" rel="nofollow noopener noreferrer" target="_blank">#PKI</a>

Konstantin WeddigeHave you ever wondered what it means when you get an email that is encrypted but not signed? At the very least, it's better than being completely unencrypted, isn't it?It turns out that's not necessarily the case. I've looked at S/MIME and found that it is possible to construct messages that, when sent to multiple recipients, are decrypted into completely different messages:<a href="https://lutrasecurity.com/en/articles/salamander-mime/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lutrasecurity.com/en/articles/salamander-mime/</a><a href="https://gruene.social/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> <a href="https://gruene.social/tags/SalamanderMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SalamanderMIME</a> <a href="https://gruene.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Lutra SecurityCan you trust what you decrypt? In this article, we look at S/MIME-encrypted emails and exploit them to take the recipients into alternate versions of reality.<a href="https://lutrasecurity.com/en/articles/salamander-mime/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lutrasecurity.com/en/articles/salamander-mime/</a><a href="https://infosec.exchange/tags/SalamanderMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SalamanderMIME</a> <a href="https://infosec.exchange/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> <a href="https://infosec.exchange/tags/KeyCommitment" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#KeyCommitment</a>

Adrian Dymorz<a href="https://mastodon.peaceful.social/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> in <a href="https://mastodon.peaceful.social/tags/Thunderbird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Thunderbird</a>: Sowohl unter <a href="https://mastodon.peaceful.social/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Windows</a> wie auch unter <a href="https://mastodon.peaceful.social/tags/LinuxMint" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LinuxMint</a> kann das verschlüsselte E-Mail zwar entschlüsselt werden, aber die Signatur sei nicht gültig. Ich freue mich, dass ich wohl zum ersten Mal ein verschlüsseltes E-Mail erhalten habe, bin jedoch ratlos, was das ungültige Zertifikat angeht.Wer weiss Rat?

Adrian DymorzIch versuche gerade ein <a href="https://mastodon.peaceful.social/tags/SMIME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMIME</a> <a href="https://mastodon.peaceful.social/tags/Zertifikat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Zertifikat</a> unter <a href="https://mastodon.peaceful.social/tags/iOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iOS</a> auf meinem <a href="https://mastodon.peaceful.social/tags/iPhone" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iPhone</a> einzurichten. Einfügen des Passworts aus <a href="https://mastodon.peaceful.social/tags/Keepassium" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Keepassium</a> schlägt fehl (das sei nicht unterstützt), Einlesen ab Kamera schlug mehrfach fehl und direkt Einfügen ist nicht erlaubt.Vielleicht kaufe ich mir bald ein neues <a href="https://mastodon.peaceful.social/tags/Mobile" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Mobile</a>…<a href="https://mastodon.peaceful.social/tags/Tipp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Tipp</a>s und <a href="https://mastodon.peaceful.social/tags/Hilfe" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Hilfe</a> sind sehr willkommen.

Recent searches

Search options

Administered by:

Server stats:

#smime