[Enigmail] Multiple email addresses

Phil Stracchino alaric at metrocast.net
Thu Jul 23 11:49:46 PDT 2009 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Taistealaiche wrote:
> Hi Phil,
> 
> On 24/07/2009 6:23 a.m., Phil Stracchino wrote:
>> Taistealaiche wrote:
>>> Very many thanks for all your replies regarding this. It appears the
>>> general consensus is that it isn't possible to have a separate
>>> passphrase per user for the one key. Back to the drawing board :)
>> Oh, it's perfectly doable, as I said yesterday afternoon.  It merely
>> requires distributing individual copies of the key and setting a
>> different passphrase on each copy.  You can't have multiple passphrases
>> on a single copy of the key.
> 
>> What I still don't understand is why you would want to do such a thing.
> 
>> Let's approach this in a different way.  What is the problem you are
>> trying to solve?
> 
> Mainly for access for our clients. In a corporate sense, although
> that's not what we are, it would be handy for clients to need to use
> only one Public Key which would, for example, have sales@, info@,
> manager@, etc, attached to it. Rather than needing a separate key for
> each of those individual emails.

So if the multiple recipients [at your company] are all using the same
"corporate key" anyway, why do they need separate passphrases for it?  I
don't see the gain.  In fact, the whole scheme sounds much more complex
than just making the individual public keys available to your clients in
the first place.  Unless the software they're using is totally broken,
or you haven't actually published the keys anywhere, it should retrieve
the correct public keys the first time you send them a signed message
anyway.


- --
  Phil Stracchino, CDK#2     DoD#299792458     ICBM: 43.5607, -71.355
  alaric at caerllewys.net   alaric at metrocast.net   phil at co.ordinate.org
         Renaissance Man, Unix ronin, Perl hacker, Free Stater
                 It's not the years, it's the mileage.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEAREIAAYFAkposMoACgkQ0DfOju+hMklL5ACgjYPE1Hfca6E40xTg7JZnFsFg
lbYAoKLBoRkArJ725YnAnjFsOEucWkjJ
=i0gC
-----END PGP SIGNATURE-----

More information about the Enigmail mailing list