Fun!! your message came through just fine with good signature. I've also signed the reply (using FireGPG).<br><br>I do have MailScanner on the ALE list incoming side. It is my understanding that the original message is supposed to be pristine unless there is a rule causing a disinfection to occur. Otherwise the mime is unpacked, scanned and discarded.<br><br><div class="gmail_quote">On Sat, Nov 28, 2009 at 3:18 PM, Michael H. Warfield <span dir="ltr"><mhw@wittsend.com></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Jim,<br>
<div class="im"><br>
On Sat, 2009-11-28 at 14:23 -0500, Jim Kinney wrote:<br>
> OK. So Mailman is (maybe) munging the gpg signature. Fixing that will<br>
> be a challenge if it's caused by signing the wrong sections of the<br>
> message body.<br>
<br>
</div>Something is not right here. I run a mailman site supporting several<br>
dozen lists and multiple domains (IT-ISAC, ISAC Council, +++) and I<br>
don't see this problem. We use gpg/pgp all the time on those lists.<br>
Furthermore, my own signatures through the ALE list seem to be coming<br>
through fine.<br>
<br>
Couple of years ago, I did run into a problem with MailScanner which<br>
Julian and I took a few days to shoot. In that case, MailScanner was<br>
unpacking the mime and then repacking it (quoted printable in that case,<br>
I believe). While the contents of the attachments remained unaltered,<br>
the encoding encapsulation changed (Mime is ambiguous on several points<br>
and something time MailTools or MimeTools will pack something<br>
differently than will Evolution or Thunderbird). We had to stipulate<br>
something in MailScanner where the message was passed unmolested if<br>
nothing was found untoward in it, rather than repacking it and sending<br>
it on.<br>
<br>
There are a couple of MailScanner Mime settings that could impact this<br>
but I seriously doubt it.<br>
<br>
Try this for a test. Send a message back to me and to the list. Just a<br>
Reply-All should do just fine. I can do a byte for bye, attachment for<br>
attachment comparison. Make SURE <<a href="mailto:mhw@wittsend.com">mhw@wittsend.com</a>> is on the cc list,<br>
so I get a direct copy. You should be able to verify my signatures on<br>
this message the same way. Compare the results from the ALE relay to<br>
the direct message.<br>
<br>
Regards,<br>
Mike<br>
<div><div></div><div class="h5"><br>
> What is needed now is to test a gpg signature sent from a plain text<br>
> (NOT from firegpg) email through mailman. It needs to be tested<br>
> through both firegpg and regular text email (anyone got a quick link<br>
> to gpg with mutt?).<br>
><br>
> I sent myself a test message from firegpg to myself and NOT through<br>
> mailman. firgpg then reported it as a good signature. That leads me to<br>
> think the issue _is_ with mailman.<br>
><br>
> oh joy. criticizing a gnu codebase ....<br>
><br>
> On Sat, Nov 28, 2009 at 12:41 PM, Jeremy T. Bouse<br>
> <<a href="mailto:jeremy.bouse@undergrid.net">jeremy.bouse@undergrid.net</a>> wrote:<br>
> <a href="mailto:jim.kinney@gmail.com">jim.kinney@gmail.com</a> wrote:<br>
><br>
> > This is a simple test of firegpg running on Fedora<br>
> 12/Firefox 3.5.5<br>
> ><br>
> > Please reply with good or bad signature status.<br>
> ><br>
><br>
><br>
> gpg command line and output:<br>
> /usr/bin/gpg<br>
> gpg: Signature made Sat 28 Nov 2009 11:04:06 AM EST using RSA<br>
> key ID<br>
> 6A87D3C5<br>
> gpg: BAD signature from "James P. Kinney III (Physicist,<br>
> Brewer, Dad)<br>
> <<a href="mailto:jimkinney@gmail.com">jimkinney@gmail.com</a>>"<br>
><br>
><br>
> ______________________________<wbr>_________________<br>
> Ale mailing list<br>
> <a href="mailto:Ale@ale.org">Ale@ale.org</a><br>
> <a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/<wbr>listinfo/ale</a><br>
> See JOBS, ANNOUNCE and SCHOOLS lists at<br>
> <a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/<wbr>listinfo</a><br>
><br>
><br>
><br>
><br>
> --<br>
> --<br>
> James P. Kinney III<br>
> Actively in pursuit of Life, Liberty and Happiness<br>
><br>
> ______________________________<wbr>_________________<br>
> Ale mailing list<br>
> <a href="mailto:Ale@ale.org">Ale@ale.org</a><br>
> <a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/<wbr>listinfo/ale</a><br>
> See JOBS, ANNOUNCE and SCHOOLS lists at<br>
> <a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/<wbr>listinfo</a><br>
--<br>
</div></div><font color="#888888">Michael H. Warfield (AI4NB) | (770) 985-6132 | mhw@WittsEnd.com<br>
/\/\|=mhw=|\/\/ | (678) 463-0932 | <a href="http://www.wittsend.com/mhw/" target="_blank">http://www.wittsend.com/mhw/</a><br>
NIC whois: MHW9 | An optimist believes we live in the best of all<br>
PGP Key: 0x674627FF | possible worlds. A pessimist is sure of it!<br>
</font></blockquote></div><br><br clear="all"><br>-- <br>-- <br>James P. Kinney III<br>Actively in pursuit of Life, Liberty and Happiness <br><br>