Article:
  How to Set Up Encrypted Mail on Mac OS X
Subject:   works with safari 1.2
Date:   2005-02-14 10:42:39
From:   sammyjjr
Thanks for the informative and detailed article. It seems that now one can use safari. I used thawte and safari to get the certificates. Certificates were automatically put into my keychain. I created a seperate keychain for my private certificate and dragged it there. I had some problem getting mail to recognize that I had a certificate so I temperarily allowed all aplications to access the certificates which seemed to do the trick. The process of acquiring a certificate is also documented in Mail Help to some extent.
Best regards.
sammyjjr
Full Threads Oldest First

Showing messages 1 through 3 of 3.

  • FJ de Kermadec photo works with safari 1.2
    2005-02-14 10:46:39  FJ de Kermadec | O'Reilly Blogger [View]

    Hi!

    First of all, thank you very much for taking the time to write and for your kind words, I really do appreciate them! :^)

    Yes, one can use Safari to download the certificates and install them in one step. Unfortunately, with the current Keychain/Safari combination, there is no way (that I am aware of at least) to backup your certificates and to extract them to transfer them onto another system if you decide to use this method. This is why, despite the recent Safari update, I would still advise to use Firefox to perform the certificate generation and downloading steps.

    Truly yours,
    FJ
    • works with safari 1.2
      2005-02-14 11:37:33  sammyjjr [View]

      Thanks for the reply. Keychains are transferable to other systems. Should I not be able to transfer the keychain with the certificates to another computer runnings osx at least?
      best regards
      sammyjjr
      • FJ de Kermadec photo works with safari 1.2
        2005-02-14 12:13:21  FJ de Kermadec | O'Reilly Blogger [View]

        Hi again!

        You're most welcome! :^)

        Yes, you should be able to transfer the keychain to another Mac OS X machine.

        The main problem with not having a re-importable copy of the certificate is that, should your keychain be corrupted or damaged (it unfortunately happens), you would have no way to get they keys back out into a workable setup. Should you only use your keys to sign your mail, this is of no real importance but should you use them to also encrypt mail, this means that you may never be able to decrypt these messages again. Of course, it is an unlikely situation but I have seen it happening (for reasons way beyond the control of the Keychain development team) and it could be an issue depending on the type of mails you exchange.

        Truly yours,
        FJ