[issue6] Sending pkcs#10 requests could be better
aegypten-issues at intevation.de
Wed Dec 3 20:22:58 CET 2003
New submission from Werner Koch <wk at gnupg.org>:
The UI which presents the created cert-request should not simply list the
request block as sent to the backend, but repeat what the user selected in a
more standard formatting.
The text should note that one gets dropped into the mail composer, so that
further information may be entered.
The default text in the composer: "Please sign this certificate and return to
sender." is misleading. A CA does not sign a requests but takes it as input to
actually *create* a certificate from the supplied data and other data the CA
requires to identify the user. Hmm, asking whether this should be signed when
sending the mail is also not the best solution ;-)
The buttons to sign this request should be disabled, because only experts may
send a signed mail with the already self-signed pkcs#10 message. It is simply
confusing. Hmmm, it might even be better not to get user even into the composer
at all (unless an expert option in the generation wizard was selected) but to
send the request straight out. The To: address has already been specified in
the wizard and the from address should be taken from the certificate request.
title: Sending pkcs#10 requests could be better
Aegypten issue tracker <aegypten-issues at intevation.de>
More information about the Gpa-dev