Add S/MIME-support to Roundcube #4977
Comments
|
Comment by seansan on 19 Feb 2008 20:55 UTC Moved to later for now |
|
Comment by vanbroup on 5 Mar 2010 14:16 UTC I would love to make a donation to the project or just paying the full development to get S/MIME support added in a short time! Please just contact me, if you are interested. |
|
Comment by dprophit on 3 Nov 2013 16:53 UTC Necessary webmail feature over pgp |
|
Comment by dprophit on 25 Nov 2013 14:22 UTC Why is this feature taking to long to bring to a revision? |
|
Comment by glawrie on 3 Dec 2013 13:27 UTC Would be interested in this being added too... not sure what milestone "later" means... hopefully not sometime-never. |
|
Comment by Takika on 12 Dec 2013 00:40 UTC I just made a plugin which can verify the S/MIME signed mails. |
|
Comment by admins on 18 Feb 2014 13:23 UTC Hi all
Thx |
|
Comment by amarand on 30 May 2014 15:43 UTC Adding self to Cc list. |
|
Comment by Shellmaster on 1 Mar 2015 19:25 UTC Hi there, I am working on it. At the first step I want to add full signature verification. |
|
Comment by @alecpl on 11 Apr 2015 06:00 UTC Please, take a look at current state of enigma plugin. There's full PGP support and some code for s/mime, but this part requires work. Would be great to have s/mime and pgp integrated in one place. There's already a lot of helpful code there. Of course if you agree to the solution that keeps keys/certs server-side. I can understand if you plan to create a client-side plugin. |
|
Are there any progress for S/MIME Support in Roundcube? |
|
Some people were working on this subject, but nothing has been integrated into Roundcube. I know one plugin exists: https://plugins.roundcube.net/packages/takika/rc_smime, but from the description I see it does not support encryption. There's also some code in this fork github.com/guitarmanusa/roundcubemail. So, if anyone is interested in working on this see the links and my comment above. |
|
Thx for that info. I hope someone can continue to work on S/MIME Support, since PGP isn't supported by most of my Contacts. Most of them use S/MIME and cant include PGP Support in their Clients. |
|
I would really love this. With DANE support coming to S/MIME (see https://tools.ietf.org/html/draft-ietf-dane-smime-16) it would let me publish a DANE record 2 1 1 intermediate certificate that could be used to sign S/MIME certs for each user account that wants it without the cost of certificate authorities. The mail service I provide is webmail only, I would want the S/MIME keys/certs on the webmail server which some people rightfully object to but those people should be using mail services that are not webmail only. Whoever is working on this should take that draft RFC into consideration so that roundcube can DANE validate S/MIME certs sent by other users. I believe current version of OpenSSL support DNSSEC validation, not sure if the php wrapper does. I don't know about LibreSSL. But on a webmail server that wants to offer DANE validation of S/MIME certs, it is reasonable IMHO to require they use a DNSSEC validating recursive resolver so the webmail server itself only needs to validate that the zone is DNSSEC signed (easy to do) and doesn't need to do the DNSSEC validation itself. |
|
@AliceWonderMiscreations all this sounds well. But I would prefer pushing PGP signed messages. The PGP public keys can also be ditributed over dns and can be dnssec signed. And roundcube should also push PGP signed messages. In this case it would be nice to see if a key is denssec signed or not. OpenSSL is able do do dnssec validation. But I do not think that each provider samall or big use a validating resolver for it. But at the end opinions will differ widely about what to use. |
|
@alecpl Would it be possible to financially support development of this feature? |
|
@taalas @boredland I will be working on S/MIME support, are you still interested in supporting this feature financially? (Note: I am not affiliated with Roundcube, just a happy user and occasional contributor at this point) |
|
@duk3luk3 We are still interested in this feature and might be able to financially support it's development. This largely depends on the amount of support needed though, what did you have in mind? |
|
The enigma readme has the following TODO items for S/MIME: This is how I'd go about implementing it:
This allows me to build the code up without worrying about ancillary functionality and "bookkeeping" type stuff until I get to step 2, and I won't need to have private keys around until step 4. I think that progression should also make it easy for someone to pick up the work if I have to abandon it. So maybe you'd like to put some bounties on these steps for anyone to pick up, or we could contract directly. I am an independent IT consultant and one of my main clients is a university in Germany, where S/MIME support in Roundcube would be a very nice to have feature since all users have S/MIME certificates, however it's not a priority requirement and there are no plans for it right now. Now before I can put numbers to this, I need to know at what level you want to support this and what your organization is and I think we should take the conversation off this issue tracker. You can find my contact info here: http://www.lerlacher.de/contact.en.html - please just shoot me an e-mail! |
|
@alecpl I am working on this now - is it "PR's welcome"? Any special requirements to make sure it will be acceptable for merging into core? |
|
Create a PR, please and I will review. For now the only requirement is to use code style of Roundcube. |
|
following this with great excitement |
|
I am running into some issues with the (I am also still looking for additional financial support to allow me to dedicate more of my time to this. As you can see, it's not that simple...) EDIT: I've figured out my php_openssl issue, but the request for funding still stands! |
|
PR submitted! |
|
@duk3luk3 Are you still working on the S/MIME functionality? Would really like to see that in Roundcube. Thanks! |
|
@m0urs |
|
@duk3luk3 That is too bad but understandable. I had contacted you a couple of weeks ago about the current status. Sorry to hear that there is no chance of this happening in the near future... |
|
I am choosing between horde, squirrelmail and roundcube... That S/MIME is not supported immediately excludes roundcube from my options. |
|
Since @duk3luk3 s pull request seems to still be open I would like to kindly ask if there is anything planned for S/MIME support in future Enigma versions. How likely is it that this feature will be worked on anytime soon(ish)? |
|
Any update on this? |
|
Also following.. Can we get a bounty going for this code change? |
|
Unfortunately, I don't have time to dive into this. Horde Webmail supports S/MIME. This means that Horde code can be used to implement S/MIME in Roundcube. The Horde_Crypt_Smime class can be found here: Isn't open source just beautiful? :) (I understand that it's prettier to implement this using own code, but this ticket has been open for 13 years now. So maybe someone could at least implement this as a temporary solution?) |
|
any updates on this? |
1 similar comment
|
any updates on this? |
|
12 years later and still not support for the CRITICAL feature. |
|
Honestly I feel like this is old tech now. So not too worried.
…Sent from my iPhone
On 18 Aug 2022, at 9:26 pm, captainwasabi ***@***.***> wrote:
12 years later and still not support for the CRITICAL feature.
—
Reply to this email directly, view it on GitHub, or unsubscribe.
You are receiving this because you commented.
|
|
Hi, This is getting ridiculous. Is there any update to this please?? |
|
@jedvod:
I would also like to see S/MIME in Roundcube, but your expectations and wording are the only really ridiculous thing here. Nobody owes you anything, especially if you do not contribute in any way. |
Easy easy lol.. I feel his frustration but such is life with free products and not being a dev and no bounty style go fund me. :( |
|
16 Years and still no support, I'll try to develop it myself. |
Nextcloud Mail supports s/mime now. Just got it all working today. |
|
Hopefully one day this feature being implemented even partially for example for signing only |
|
Honestly the age of email is on its last life. 95% is spam or junk or sign ups next will be instant message systems Also fact the back end is somewhat open. On 15 Nov 2024, at 10:04 am, Louise Anton ***@***.***> wrote:
Hopefully one day this feature being implemented even partially for example for signing only
—Reply to this email directly, view it on GitHub, or unsubscribe.You are receiving this because you commented.Message ID: ***@***.***>
|
@Anarbb If you built something, would you be interested to share it? Maybe you can contribute it to the project? |
|
Dear all, Have you progressed on it? In several years, I have seen that some people will work on it. Thanks in advance. |
and others
Reported by Luzifer on 26 Jan 2008 15:03 UTC as Trac ticket #1484725
It would be very nice if one could digitally sign / encrypt mails in roundcube with S/MIME certificates (http://en.wikipedia.org/wiki/S/MIME) which are fetched at cacert or thawte free mail cert for example. This would pass more security to the sent mails.
Keywords: s/mime security encryption digitalsignature
Migrated-From: http://trac.roundcube.net/ticket/1484725
The text was updated successfully, but these errors were encountered: