From lurker-index@localhost Tue Sep 20 02:46:08 2016 Return-Path: Received: from lin16.mojsite.com (178.218.164.164:993) by g0n.xdwgrp with IMAP4-SSL; 20 Sep 2016 00:46:08 -0000 Envelope-to: miro.rovis@croatiafidelis.hr Delivery-date: Tue, 20 Sep 2016 02:44:37 +0200 Received: from shtjevan.gbnet.net ([194.70.142.36]:63214 helo=gbnet.net) by lin16.mojsite.com with esmtps (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.87) (envelope-from ) id 1bm9Am-0004fg-CG for miro.rovis@croatiafidelis.hr; Tue, 20 Sep 2016 02:44:32 +0200 Received: (qmail 4858 invoked by uid 611); 20 Sep 2016 00:41:36 -0000 Received: (qmail 4834 invoked from network); 20 Sep 2016 00:40:45 -0000 Received: from mail-1.fido.net (84.246.192.5) by shtjevan.gbnet.net with ESMTPS (DHE-RSA-AES256-SHA encrypted); 20 Sep 2016 00:40:45 -0000 Received: from smtp7.plusvps.com ([89.201.164.170]) by mail-1.fido.net with esmtps (TLSv1.2:ECDHE-RSA-AES256-SHA:256) (Exim 4.86) (envelope-from ) id 1bm975-0003no-7g for mutt-users@mutt.org; Tue, 20 Sep 2016 01:40:45 +0100 Received: from lin16.mojsite.com ([178.218.164.164]) by smtp7.plusvps.com with esmtps (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.84) (envelope-from ) id 1bm972-000Abc-K2 for mutt-users@mutt.org; Tue, 20 Sep 2016 02:40:40 +0200 Received: from 93-142-105-39.adsl.net.t-com.hr ([93.142.105.39]:57348 helo=g0n.localdomain) by lin16.mojsite.com with esmtpsa (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.87) (envelope-from ) id 1bm971-0004Co-EM for mutt-users@mutt.org; Tue, 20 Sep 2016 02:40:39 +0200 Received: by g0n.localdomain (Postfix, from userid 1000) id 50271DD93; Tue, 20 Sep 2016 02:40:51 +0200 (CEST) Date: Tue, 20 Sep 2016 02:40:51 +0200 From: Miroslav Rovis To: mutt-users@mutt.org Subject: Re: PGP sigs fail verification Message-ID: <20160920004051.GK31779@g0n.xdwgrp> References: <20160917232509.GK31239@g0n.xdwgrp> <20160918051503.GO31239@g0n.xdwgrp> <20160918061803.4077.03047CF5@matica.foolinux.mooo.com> <20160919053542.13563.3494DAB5@matica.foolinux.mooo.com> <20160919103952.GA13914@x2.esmtp.org> <20160919141105.GF31779@g0n.xdwgrp> <20160919145833.uqsypbawzolll3ro@darac.org.uk> <20160919202536.GA31772@g0n.xdwgrp> <20160919225636.3870.1E81EEA4@matica.foolinux.mooo.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="W/D3X8sky0X3AmG5" Content-Disposition: inline In-Reply-To: <20160919225636.3870.1E81EEA4@matica.foolinux.mooo.com> User-Agent: Mutt/1.7.0 (2016-08-17) X-PlusHosting-MailScanner: Not scanned: please contact your Internet E-Mail Service Provider for details, Found to be clean, Found to be clean X-PlusHosting-MailScanner-SpamCheck: , not spam, SpamAssassin (not cached, score=-3.199, required 5, BAYES_00 -1.90, HEADER_FROM_DIFFERENT_DOMAINS 0.00, KAM_LAZY_DOMAIN_SECURITY 1.00, RCVD_IN_DNSWL_MED -2.30) X-Spam-Status: No, No, No X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - lin16.mojsite.com X-AntiAbuse: Original Domain - mutt.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - croatiafidelis.hr X-Get-Message-Sender-Via: lin16.mojsite.com: authenticated_id: miro.rovis@croatiafidelis.hr X-Authenticated-Sender: lin16.mojsite.com: miro.rovis@croatiafidelis.hr X-Filter-ID: s0sct1PQhAABKnZB5plbIR2SJy4mPedjCjbCVmstzVxwmVN+qmOsqPA4awzKV+nfEy9+6i+HVSod DWEH1Oag5P0gpBbsmKo2xFYd4cLbfj1iLS35izL9ptKuULkIwwsu0z6bhalFEM/pjPCQA+BAllJw ro3yTLtJuU6ExAwG+yzjzOoDJqiQN2i0euud5jjnzR7/PvNhTcyl6iDYCke1YdvyiRfeZig7P9PG z0XANcZgKd2dvksk8wnmytBGklCUXPWlFdaGOH191uXjgjQN/W4jTw0cILd7o5RN+VfVmaiWIfx7 2XfVKFoIpfctRbVK4t4d8JgCR4QeUw1lZy7PBRaZrTLjuequwc50jekroBTDqcigOvSxdRnthmhn 8Zn6pjBcJbbIhN3IdQS/6GN7G+KIStnwG6agArbBJGis+KOQAEErZ6BfD4/W227/VzHg+l5ZnOoq S85+o/HqXSJ34L1TzOfBFM7Er/7n1KQSkHuxOWnp1UaerA3HM1DGPLa9aseSo+eTNO7G/rUMG+AW yn7GSOGo5AhqxuJQMN+Ull1jlvMIu+sRZOzqnbOGnKMP X-Report-Abuse-To: spam@master.fido.net X-FidoGuard-Class: ham X-FidoGuard-Evidence: Combined (0.11) X-Recommended-Action: accept List-Post: List-Unsubscribe: send mail to majordomo@mutt.org, body only "unsubscribe mutt-users" Precedence: bulk Sender: owner-mutt-users@mutt.org X-PlusHosting-MailScanner-Information: Please contact the ISP for more information X-PlusHosting-MailScanner-ID: 1bm9Am-0004fg-CG X-PlusHosting-MailScanner-From: owner-mutt-users-m24754@mutt.org X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?= --W/D3X8sky0X3AmG5 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On 160919-16:15-0700, Ian Zimmerman wrote: > On 2016-09-19 22:25, Miroslav Rovis wrote: >=20 > > $ gpg --verify dNZQNRnu_DarakMarjal160907-raw_QkYBXROR.sig \ > > dNZQNRnu_DarakMarjal160907-raw.asc=20 > > gpg: Signature made Wed 07 Sep 2016 12:21:36 CEST using RSA key ID > > 48C912E7 > > gpg: BAD signature from "Paul Saunders " > > $ >=20 > You're a victim of the same misunderstanding as I was, when I tried to > investigate the problem this way :-P Late evening in Ian's country, the U.S. probably, sleep not coming to me here in Southern-Southeastern Europe in this quite of night. > You need to read RFC 3156, which specifies how the signature is computed > on PGP/MIME mails. Will be doing it right next! > It is _not_ on the data you see when you dump the > text into a Unix file (even when you take into account the encoding such > as quoted-printable). >=20 > Here are at least 3 differences: (there may be more) >=20 > 1. Line endings: all transformed into CRLF before signing >=20 > 2. Trailing whitespace: all stripped before signing >=20 > 3. MIME part headers (ie. the stuff after the MIME boundary line and > before the first empty line after that): included in signed data > I'll be revisiting 3., after I read the RFC 3156, the rest I understand. > So, if we want to pursue this line of verifying from the command line, > first we need a piece of code or script that will take an email and spit > out the data _as used for the signature computation_. I think it ought > to exist out there. That is my next step. > That'd be so great if you lay your eyes on it and present it to Mutt Users attention over here! > As I reported in other subthread, I took one "BAD" email from my system > (directly from the maildir, not exporting with mutt) and compared it to > the archived copy from MARC. They were identical. At least this way I > eliminated the possibility of mangling by intermediate MTAs. > I'll, after my RFC homework, try and follow your steps in the above paragraph. > For my part I now think this is a flea. > I like chasing fleas! I have had a couple of true shots recently and devs were able to kill'em, and once I even figured out a trivial patch! I'll be doing what I can. Can't promise much, I'm usually making my progresses at turtle speed even when I apply my best, which I will do here! > --=20 > Please *no* private Cc: on mailing lists and newsgroups > Why does the arrow on Hillary signs point to the right? Regards! --=20 Miroslav Rovis Zagreb, Croatia http://www.CroatiaFidelis.hr --W/D3X8sky0X3AmG5 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJX4IWSAAoJEOqYhIhPuvCumNoQAJjKU03YeS3M0sZo2K+rcWFZ sxntVf2tNqiRnkVtJHU0tb5VI5MYgUIqgWpP5U0lnR2pZRqr7TESAll15CZkb3qe kNWRWHelrPTMGcptXTcuYpqVs05mLQZ8U8rW9yiGQFmMafFINOfSbOUSSGv/iBJU fs3DKnSTSTcMD1QDKsxGZUEV9gpUPBi46doSFvao8p2h5UtQvkhKZxRu6UTOM2mm MBIPPrDObIWF0IqEiV9Nc6m0MrBhZCCBWBi/PVC73SmOL0mlQRWCr95GXqtAKRM9 jbIqETDT0Vr6kNMG94L2DGUV7kpbY6OxMKr86jWNk9w0OqgrvnTViZM/KOdVUa5S e7iH/F39w3J+EMr055fnIGSM+sEeYtqV2NIA86MqUzy6uYKRG5hXEkhhQ3sk7lKP uk4B81UuNO6uVYn5dFHBFLtodaJaK8OGVI18u1z+4/OsQ59v/cnG6MJ0PynbDKjI BYkkmprsM3ZBFoECBpsYQ2VbUoRvUF8YYfq4aLPMjxJo8rmL72SpG62yYzSQawSi RbBs0ZzdQUyV82vvvlgTV07A9zhH/R8uebP7zyeXTlvCI4Qzbkg4Q56rvR3FkgP9 9QzurzWoyZPg/X4mKMzX+qAQFR/XXZBcWzead1vRO6iQwG1qvXJKWSv3aV/JEsyH md1C27Hku0DtnDC0Tbbk =+ObG -----END PGP SIGNATURE----- --W/D3X8sky0X3AmG5--