question about Mailcrypt plugin

Daniel Niewerth daniel at niewerth.it
Sat Sep 14 16:08:57 EEST 2019


Hi everybody,

I have a question about the Dovecot Mailcrypt Plugin.
I'm trying to understand what the security of this plugin is based on. 

The encryption with private and public key and elliptic curves is basically a good thing. But the keys are in the file system together with the encrypted mails. The passwords for the private keys are in the user database. 
I guess the passwords have to be in plaintext for it to work.

Is that true, or did I misunderstand something?
Then the encryption would make no sense at all, right?
For what purpose was the plugin developed?

Can anyone explain this to me?

Best regards

Daniel
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2373 bytes
Desc: not available
URL: <https://dovecot.org/pipermail/dovecot/attachments/20190914/e280d5ac/attachment.p7s>


More information about the dovecot mailing list