Posted by Colin McKinnon on 01/24/07 22:53

jflint wrote:

> A client has purchased a Verisign Digital ID, which creates a public
> and private key
(no it doesn't - cart before horse)

> for encrypting e-mail sent from a server and decrypting
> it when it reaches the users outlook.
(Oh dear, you think outlook [sic] is the only MUA? I suspect you may be
beyond hope already)
>
> How can I encrypt the email from a form using this method? I have read
> about using GPG and others, but have also seen mention of the mcrypt
> functions in php.
>

GPG uses a different set of cyphers and a different trust model from SSL -
you can't use it with the certificate. Same story for mcrypt (but even
wider of the mark since it doesn't support asymmetric encryption at all).

While it is possible to use the PHP openSSL functions, the fact you are
asking the question suggests that this would be a major learning exercise.
A simpler solution would be to run the emails through smime using
exec/popen or using a signing proxy like Gnu Anubis.

HTH

C.

• Next in forum: Re: Automating email reports
• Prev in forum: Re: session_?
• Thread view: Re: Email Encryption

[Reply to this message]