Users August 2021

users@lists.ciphermail.com

3 participants
4 discussions

PGP not decrypted but log states "Message has been PGP decrypted"

by wilson.meier＠gmail.com

Hi everyone, I'm not sure what exactly is going on here. An external sender did send an email which is PGP Inline encrypted with our public key. His attached public key has been automatically imported but not trusted yet, as there is no automatic mechanism to do so. Cipermail Version 5.0.4 The log states: 06 Aug 2021 10:47:05 | INFO incoming; MailID: 96a3f2d1-a2ac-46da-abfd- f1afda2de434; Recipients: [example(a)domain.tld]; Originator: sender(a)external.tld; Sender: sender(a)external.tld; Remote address: XXX.XXX.XXX.XXX; Subject: Some Subject; Message-ID: <5285c5f4d0274c328350c62b0d49dd38(a)FDSFSDAFASDFA.com>; (mitm.application.djigzo.james.mailets.Log) [Spool Thread #2] 06 Aug 2021 10:47:05 | INFO Subject filter is disabled for the sender; MailID: 96a3f2d1-a2ac-46da-abfd-f1afda2de434; Recipients: [example(a)domain.tld] (mitm.application.djigzo.james.mailets.Default) [Spool Thread #2] 06 Aug 2021 10:47:05 | INFO To internal recipient(s); MailID: 96a3f2d1-a2ac-46da-abfd-f1afda2de434; Recipients: [example(a)domain.tld] (mitm.application.djigzo.james.mailets.Default) [Spool Thread #2] 06 Aug 2021 10:47:05 | WARN PGP/INLINE signature was not valid; Failure message: Public key not found in trust list.; MailID: 96a3f2d1- a2ac-46da-abfd-f1afda2de434 (mitm.common.security.openpgp.PGPRecursiveValidatingMIMEHandler) [Spool Thread #2] 06 Aug 2021 10:47:05 | WARN PGP/INLINE signed message contained mixed content; MailID: 96a3f2d1-a2ac-46da-abfd-f1afda2de434 (mitm.common.security.openpgp.PGPRecursiveValidatingMIMEHandler) [Spool Thread #2] 06 Aug 2021 10:47:05 | INFO Message has been PGP decrypted; MailID: 96a3f2d1-a2ac-46da-abfd-f1afda2de434; Recipients: [example(a)domain.tld] (mitm.application.djigzo.james.mailets.PGPHandler) [Spool Thread #2] 06 Aug 2021 10:47:05 | INFO Message handling is finished. Sending to final recipient(s); MailID: 96a3f2d1-a2ac-46da-abfd-f1afda2de434; Recipients: [example(a)domain.tld]; Originator: sender(a)external.tld; Sender: sender(a)external.tld; Remote address: XXX.XXX.XXX.XXX; Subject: Some Subject; Message-ID: <5285c5f4d0274c328350c62b0d49dd38(a)FDSFSDAFASDFA.com>; (mitm.application.djigzo.james.mailets.Log) [Spool Thread #2] One line says "Failure message: Public key not found in trust list" but the following message says "Message has been PGP decrypted". Still the mail reaches the user mailbox in encrypted sate. Either the obviously wrong success message is a bug or something i don't understand is going on. From my point of view a failure to check the signature shouldn't stop decryption. Or am i wrong? Any ideas? Is automatic key trust or at least an option to allow untrusted keys to be used on the Roadmap? Regards Wilson

9 months, 2 weeks

Re: Import of p7b files fails

by Stefan Günther

----Ursprüngliche Nachricht----- > Von: Martijn Brinkers <martijn(a)ciphermail.com> > Gesendet: Montag 23. August 2021 6:50 > An: users(a)lists.ciphermail.com > CC: Stefan Michael Guenther <s.guenther(a)in-put.de> > Betreff: Re: [CipherMail User] Import of p7b files fails > > On Fri, 2021-08-13 at 14:17 +0000, Stefan Günther via Users wrote: > > Hello, > > > > I setup Ciphermail 5.0.4 on Ubuntu 20.4 with Tomcat 9.0.31 and > > openjdk 11.0.11 > > > > Importing a certificate from the current (old) Ciphermail is no > > problem. But when I select more than one certificate, the file > > certificates.p7b is created (which is technically okay) and the > > import fails with the message " There was an error uploading the > > certificate file. Cause: Processing of multipart/form-data request > > failed. Stream ended unexpectedly " > > I just tested this is on a fresh installation of CipherMail on Ubutnu > 20.04 and it works for me. > > Which browser are you using? > I just got a phone call from a company using Ciphermail. They installed the current Ciphermail on a Debian 10 and tried to import a 180 MB backup, using Windows and Edge. The reason why they called us ist, that they received the same error message as we did. I doubt, that the problem is related to the size, because our backup has a size of only 22 MB and the p7b file only has 37KB. Kind regards, Stefan

10 months, 2 weeks

Import of p7b files fails

by Stefan Günther

Hello, I setup Ciphermail 5.0.4 on Ubuntu 20.4 with Tomcat 9.0.31 and openjdk 11.0.11 Importing a certificate from the current (old) Ciphermail is no problem. But when I select more than one certificate, the file certificates.p7b is created (which is technically okay) and the import fails with the message " There was an error uploading the certificate file. Cause: Processing of multipart/form-data request failed. Stream ended unexpectedly " In /var/log/tomcat9/catalina.2021-08-13.log I find the following errors: 13-Aug-2021 15:39:31.589 INFO [https-jsse-nio-8443-exec-3] org.apache.coyote.http11.Http11Processor.service Error parsing HTTP request header Note: further occurrences of HTTP request parsing errors will be logged at DEBUG level. java.lang.IllegalArgumentException: Invalid character found in the HTTP protocol at org.apache.coyote.http11.Http11InputBuffer.parseRequestLine(Http11InputBuffer.java:533) at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:260) at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65) at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:868) at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1639) at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) at java.base/java.lang.Thread.run(Thread.java:829) The same error appears when I try to import the suggested CA certficate list from Mozilla (https://ccadb-public.secure.force.com/mozilla/IncludedRootsPEMTxt?TrustBits…). What am I doing wrong? Thanks for any suggestions & hints, Stefan

10 months, 2 weeks

Re: Import of p7b files fails

by Stefan Günther

Hello, I now also get an error when I try to import the backup of a CM 4.8.0 installation on 5.0.4: Type Exception Report Message Invalid character found in method name. HTTP method names must be tokens Description The server cannot or will not process the request due to something that is perceived to be a client error (e.g., malformed request syntax, invalid request message framing, or deceptive request routing). Exception java.lang.IllegalArgumentException: Invalid character found in method name. HTTP method names must be tokens org.apache.coyote.http11.Http11InputBuffer.parseRequestLine(Http11InputBuffer.java:416) org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:260) org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65) org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:868) org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1639) org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) java.base/java.lang.Thread.run(Thread.java:829) A confusing detail is the url in the address line of the browser: https://192.168.22.170:8443/ciphermail/accessdenied I have tried this as root. Thanks for any hints & suggestions. Best whishes, Stefan

10 months, 2 weeks

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

Users August 2021