Re: [Fed-Talk] CAC-Issues with Apple Mail since macOS 10.12.3 (Sierra)
Re: [Fed-Talk] CAC-Issues with Apple Mail since macOS 10.12.3 (Sierra)
- Subject: Re: [Fed-Talk] CAC-Issues with Apple Mail since macOS 10.12.3 (Sierra)
- From: "Lamb, John (NIH/NIDCD) [C]" <email@hidden>
- Date: Tue, 25 Apr 2017 12:59:35 +0000
- Ironport-phdr: 9a23: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
- Thread-topic: [Fed-Talk] CAC-Issues with Apple Mail since macOS 10.12.3 (Sierra)
Jason,
It is not a dumb question at all. Since the email is encrypted using the public key of the recipient, and the recipient has the private key, it makes sense for the email to then be decrypted. In this instance, it is appropriate to also display that there is a mismatch in the signing certificate and the “from:” address.
Thank you,
John Lamb
Desktop Manager | NIDCD ISMB | LCG Contractor
National Institute on Deafness and Other Communication Disorders
240-688-7017
email@hidden <http://email@hidden/>
http://www.nidcd.nih.gov
On 4/24/17, 6:46 PM, "Levine, Jason (NIH/NCI) [E]" <email@hidden> wrote:
I apologize for what might be a dumb question, but why would ANY email client successfully, or even want to, decrypt an email where the From: address is different from the address in the signing/encrypting certificate? This seems wrong on many levels.
Jason
> On Apr 24, 2017, at 5:37 PM, Basil Decina <email@hidden> wrote:
>
> Forgive the blast but don’t know if anyone has hit the following…
>
> 1) Apple Mail under macOS Sierra 10.12.4 (and previously 10.12.3) can’t easily open CAC-signed (or encrypted) e-mail if the sender (“From:”) address is different than the address that signed/encrypted the message (the address in the CAC PKI cert). It literally takes 30 minutes (I timed it) to view/open such messages. If I drag the message to Outlook under Windows (under VMware), it opens quickly. If I try to drag it to Outlook under macOS, it hangs Outlook.
>
> This is problematic with all new messages but also in re-building/re-indexing existing messages. (It took me over 400 hours to re-index my mailboxes — ouch!)
>
> I removed all my DoD Root CA certs and re-installed them — no luck.
>
> 2) Nested mailboxes are now “disappearing” from list. They are still in "~/Library/Mail/V4” but are no longer listed inside mail.app — they disappeared over a period of days/weeks.
>
> I think the two issues are related.
>
> Has anyone hit anything similar ?
>
> Thanks, Basil
>
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Fed-talk mailing list (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden