[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: electronic signatures

From: Chad Walstrom
Subject: Re: electronic signatures
Date: Fri, 14 Apr 2006 16:03:50 -0500

> I'm a bit of an amateur gnats administrator and have been asked if I
> can set up electronic signatures with our gnats database.  I've
> looked around, but I haven't found a way to do this.  Does anyone
> know if this is possible?

What type of electronic signatures are you talking about, exactly?  If
you're talking about using gnatsweb with X.509 client signatures, the
answer is yes, depending upon your web server's capabilities.  I
believe the Gnatsweb CGI has a fall-through with respect to
authentication.  You may have to make certain that gnatsd only answers
to requests on and use blank passwords in the gnatsd.access
file.  However, make certain that people cannot log on to the site
location (or use the CGI) without first authenticating with the X.509

If you are instead referring to some sort of email S/MIME setup, take
would quite a bit of hacking to get working.  At this moment, it would
be of questionable use, given that there is no way to control/edit
PR's via email, just append comments.  You could potentially add some
sort of preprocessing script for your email server with Python, Perl,
or your favorite language to verify/valid PGP or S/MIME signatures
before running the email through queue-pr.  We use procmail scripts to
detect and drop viruses/spam and other unwanted email before routing
to the queue.

Chad Walstrom <address@hidden> 
           assert(expired(knowledge)); /* core dump */

reply via email to

[Prev in Thread] Current Thread [Next in Thread]