Mavericks: cannot decrypt S/MIME email
Mavericks 10.9.4 on MacBook Air, using latest Apple Mail v7.3 (1878.6).
I can send and receive (verify) signed S/MIME email, and send encrypted S/MIME email.
Problem: I cannot read received encrypted email, even email that I myself send to my own address (and for which I obviously have all the appropriate keys). Encrypted email arrives as if it wasn't secured at all, and its only content is attached file "smime.p7m".
I have my own CA, which issued certificates for a few of my email accounts. However this problem manifests itself also on accounts whose keys are certified by my school.
This email and these certificates worked with Mountain Lion...
I'd appreciate any help, and would be happy to provide any info that might help finding a solution to this problem.
Thanks!
Here's an excerpt from the headers from one of the encrypted messages:
Content-Type: application/pkcs7-mime; name=smime.p7m; smime-type=enveloped-data
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
Content-Disposition: attachment; filename=smime.p7m
In-Reply-To: <[email protected]>
Content-Transfer-Encoding: base64
Message-Id: <[email protected]>
References: <[email protected]>
X-Mailer: Apple Mail (2.1878.6)
X-Score-Level: *** 3.124
Re: Test (signed encrypted)
Message was edited by: Mouse008
Added message headers.
First, the address associated with the S/MIME public key must exactly match the address to which you're trying to send the encrypted message. The matching is case-sensitive: "[email protected]" does not match "[email protected]".
The recipient's certificate must be valid: not self-signed, expired, or revoked. You can check the status of the certificate in Keychain Access (see below.)
If you can't encrypt messages to a valid address with a valid certificate, continue.
Back up all data before proceeding.
Launch the Keychain Access application in any of the following ways:
☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
☞ Open LaunchPad. Click Utilities, then Keychain Access in the icon grid.
Select the login keychain from the list on the left side of the Keychain Access window. If your default keychain has a different name, select that.
If the lock icon in the top left corner of the window shows that the keychain is locked, click to unlock it. You'll be prompted for the keychain password, which is the same as your login password, unless you've changed it.
Right-click or control-click the login entry in the list. From the menu that pops up, select
Change Settings for Keychain "login"
In the sheet that opens, uncheck both boxes, if not already unchecked.
From the menu bar, select
Keychain Access ▹ Preferences... ▹ First Aid
If the box labeled Keep login keychain unlocked is not checked, check it.
Select Keychain from the menu bar and repair the keychain.
Quit and relaunch Mail. Test. If the problem isn't resolved, continue.
Export all S/MIME certificates, delete them from the keychain, and reimport. For instructions, select
Help ▹ Keychain Access Help
from the menu bar and search for the term "export" in the help window. Export each certificate as an individual file; don't combine them into one big file.
Test again. If the test fails, delete all the certificates again, then reinstall them from fresh copies.
Similar Messages
-
I cannot send or forward email in Outlook from my iPad
I cannot send or forward email from Outlook on my iPad
Try deleting the mail account and setting it back up again.
-
cannot receive or send email from my hotmail account, refuses to verify server. I have changed my password, deleted the account numerous times, any solutions? all on ios 6. it was working up until a few days ago and now refuses to load on both my ipad 2 and iphone 4S
in the process deleted all my contact, very annoying.
all help is much appreciated.
interesting that my gmail account does work perfectly.this may or may not help - but give it a try. On a forum some were reporting that talk21 is now under the yahoo umbrella. below are the steps this use listed. (This was an android forum, but the email settings should be the same. In short it looks like their server names have changed. An existing account may have simply been forwarded - but if you are reinstalling, it may want a clean install to the right servers.) Pay particular attention to the server names and port settings. (this thread was started based on a discussion of Imap vs pop - you are already an Imap person - so ignore that part)
See if this helps.
why settle for pop3, when IMAP works with talk21 and not only does mail get pushed out faster with IMAP, but when you click refresh it will be received faster than pop3. The other advantage is subfolders are also supported with IMAP but cant be seen with POP3. This mail feature works with my android eclair & hero phone and the settings are exactly the same for win mobiles also (not tested). The mail setting up roadmap is the same from what i can remember once in the mail feature for win mobi.
This is what you need to do to setup Talk21 email with IMAP.
Incoming server settings
IMAP server - imap.mail.yahoo.com
Port - 143
Security type - none
Outgoing Server settings
SMTP server - smtp.mail.yahoo.com
Port - 25
Security type - none Also important note - Enable 'require sign-in'
and enter your talk21 username and password The End...works a treat for me p.s. Its only taken me 3 years to work it out with win mobile and recently with android. Finally got it to work...hope this helps all the talk21 users out there. if there are any other similar posts out there with no answer...dont forget to mention my name when passing this post around. -
Problem with replies in Maverick's mail. Originating emails send fine. When replying to an email (various addresses) the reply is hung up and can not be sent. Option becomes put in draft, delete, etc. Any suggestions would be helpful. Mid 2013 iMac.
I don't know how rare this is. I went a week or so without a problem, and now it's starting to recur. Also, in some instances, an email will look unsent (remain in the outbox on the Treo), but it has been sent, and recipients are replying while I'm trying to figure out what is going on. Further, it will send the same email over and over during this madness.
This is a show stopper. If there isn't a software fix soon, I may chuck this phone in the garbage.
Post relates to: Treo 800w (Sprint)
UPDATE: The problem comes and goes. The next day, no changes to the treo, everything workeds. Now i'm suspecting the sprint server, and how it/the phone responds from failing to send while roaming. I've since turned off roaming, and haven't had a problem for several days.
Message Edited by slrichardson on 12-22-2008 01:12 PM -
I cannot access my old email address anymore, however I have used it for my apple ID and now I want to delete it because the account has never been verified in the first place so my password for it doesn't work. So when I want to download apps I have to sign in with apple id but I can't so I made a new one, However I can't seem to be able to delete the old one. What do I do?
You can't merge Apple IDs. You also can't cancel (delete) and existing ID, you can only choose to stop using it.
If your old ID was compromised and you can no longer access it, you'll have to contact Apple for assistance. Go to https://expresslane.apple.com ; click 'See all products and services' at the bottom of the page. In the next page click 'More Products and Services, then 'Apple ID'. In the next page select 'Other Apple ID Topics' then then 'Apple ID account Security’. -
Cannot add a new email account, and hence i have no way of creating an iCloud account (very frustrating). I had the same problem with iOS 4.3 but i had no email account to create as i set both up when i bought the iPhone 4. After adding a company email and a gmail account (both wok perfectly) i noticed that the option to create more email accounts had been ghosted (unclickable). This didn't worry me at the time. However, iCloud needs me to create one in here so i can access the cloud which i desperately want the ability to do. When i go into Settings -> Mail, accounts, calendars, the option to add a new account cannot be clicked (ghosted). I also have iCloud in the iPhone Settings ghosted (unclickable). I have same problem in itunes on Mac OSX. Surely restoring isn't the solution as i restored my iphone when changing from iOS 4.3 -> 5. Please help?
Go to
Settings,
General,
Restrictions, type in your Restriction Password,
Accounts, tick Allow Changes.
Press the back key a few times till you're back in Settings, you should see iCloud is now highlight able, now go to Mail Contacts and Calenders and add your email account as per norm.
Hope this helps. -
I cannot send or forward email but I do receive mail OK. All of the same settings work on my wife's IPhone and our Ipad. All are running on IOS 5.0.1. I get a message of your email has been put in your outbox because the receipent "%@" does not allow relaying.
Try deleting the mail account and setting it back up again.
-
Cannot send or receive email, or quit Mail after 10.4.6 update
Updated from 10.3.9 to 10.4.6 and cannot receive or send email via Mail with POP, IMAP, or .Mac accounts. Must force quit.
Four email accounts continue to have the spinning wheel, which I suspect indicate a continuing, though unsuccessful, attempt to receive mail from those accounts. Other email accounts do not show the spinning wheel.
Switched to different user account, and Mail works fine there.
G4 1.25 Mac OS X (10.4.6)Well, I hope you find the answer there. It's strange that things work properly when logged in as another user, though. Whatever you do to try to solve the problem, be sure to start by verifying/repairing your disk (not just permissions), as described here:
The Repair functions of Disk Utility: what's it all about?
Take a look at this article as well:
Font Management in Mac OS X Tiger and Panther
You may also have cache corruption issues:
Resolving Disk, Permission, and Cache Corruption
Side effects of System cache cleaning
In addition to the utilities described there, you may want to try one of the following, which are free:
OnyX
Cache Out X -
Exchange active synch - I keyed the wrong passcode and now it is not asking for a passcode just tells me that I cannot access my business email.. Is there any way to reset ?
press and hold both the power and home buttons until the apple logo appears and then let them go. Wait till the phone restarts and then try
-
B2B Message Error - Decrypting S/MIME message failed
Hi,
Am getting following error when i receive the inbound message from trading partner
I have set up the certificates on both sides.
[2010-04-15T19:53:18.981-04:00] [soa_server1] [ERROR] [] [oracle.soa.b2b.engine] [tid: weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@a8acf9] [userId: <anonymous>] [ecid: 0000IW2gpmo7MAYVLqBT8A1BlpVK00000E,0] [APP: soa-infra] [composite_name: StockXferRecSOA] [component_name: StockBPEL/StockXferReciptService] [component_instance_id: 310009] Error -: B2B-51093: Decrypting S/MIME message failed {0}.[[
Error -: B2B-51093: Decrypting S/MIME message failed {0}.
at oracle.tip.b2b.packaging.SmimeSecureMessaging.decrypt(SmimeSecureMessaging.java:1024)
at oracle.tip.b2b.packaging.mime.MimePackaging.processEncryptedMimeBodyPart(MimePackaging.java:1107)
at oracle.tip.b2b.packaging.mime.MimePackaging.processInputStreamOrStringMessage(MimePackaging.java:1173)
at oracle.tip.b2b.packaging.mime.MimePackaging.processMessageContent(MimePackaging.java:793)
at oracle.tip.b2b.packaging.mime.MimePackaging.doUnpack(MimePackaging.java:726)
at oracle.tip.b2b.packaging.mime.MimePackaging.unpack(MimePackaging.java:632)
at oracle.tip.b2b.engine.Engine.processIncomingMessageImpl(Engine.java:1583)
at oracle.tip.b2b.engine.Engine.processIncomingMessage(Engine.java:1395)
at oracle.tip.b2b.engine.Engine.incomingContinueProcess(Engine.java:3216)
at oracle.tip.b2b.engine.Engine.handleMessageEvent(Engine.java:2960)
at oracle.tip.b2b.engine.Engine.processEvents(Engine.java:2706)
at oracle.tip.b2b.engine.ThreadWorkExecutor.processEvent(ThreadWorkExecutor.java:540)
at oracle.tip.b2b.engine.ThreadWorkExecutor.run(ThreadWorkExecutor.java:200)
at oracle.integration.platform.blocks.executor.WorkManagerExecutor$1.run(WorkManagerExecutor.java:77)
at weblogic.work.j2ee.J2EEWorkManager$WorkWithListener.run(J2EEWorkManager.java:183)
at weblogic.work.DaemonWorkThread.run(DaemonWorkThread.java:30)
[2010-04-15T19:53:18.981-04:00] [soa_server1] [ERROR] [] [oracle.soa.b2b.engine] [tid: weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@a8acf9] [userId: <anonymous>] [ecid: 0000IW2gpmo7MAYVLqBT8A1BlpVK00000E,0] [APP: soa-infra] [composite_name: StockXferRecSOA] [component_name: StockBPEL/StockXferReciptService] [component_instance_id: 310009] Error -: B2B-51093: Decrypting S/MIME message failed {0}.[[
at oracle.tip.b2b.packaging.SmimeSecureMessaging.decrypt(SmimeSecureMessaging.java:1024)
at oracle.tip.b2b.packaging.mime.MimePackaging.processEncryptedMimeBodyPart(MimePackaging.java:1107)
at oracle.tip.b2b.packaging.mime.MimePackaging.processInputStreamOrStringMessage(MimePackaging.java:1173)
at oracle.tip.b2b.packaging.mime.MimePackaging.processMessageContent(MimePackaging.java:793)
at oracle.tip.b2b.packaging.mime.MimePackaging.doUnpack(MimePackaging.java:726)
at oracle.tip.b2b.packaging.mime.MimePackaging.unpack(MimePackaging.java:632)
at oracle.tip.b2b.engine.Engine.processIncomingMessageImpl(Engine.java:1583)
at oracle.tip.b2b.engine.Engine.processIncomingMessage(Engine.java:1395)
at oracle.tip.b2b.engine.Engine.incomingContinueProcess(Engine.java:3216)
at oracle.tip.b2b.engine.Engine.handleMessageEvent(Engine.java:2960)
at oracle.tip.b2b.engine.Engine.processEvents(Engine.java:2706)
at oracle.tip.b2b.engine.ThreadWorkExecutor.processEvent(ThreadWorkExecutor.java:540)
at oracle.tip.b2b.engine.ThreadWorkExecutor.run(ThreadWorkExecutor.java:200)
at oracle.integration.platform.blocks.executor.WorkManagerExecutor$1.run(WorkManagerExecutor.java:77)
at weblogic.work.j2ee.J2EEWorkManager$WorkWithListener.run(J2EEWorkManager.java:183)
at weblogic.work.DaemonWorkThread.run(DaemonWorkThread.java:30)
[2010-04-15T19:53:18.981-04:00] [soa_server1] [TRACE:32] [] [oracle.soa.b2b.engine] [tid: weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@a8acf9] [userId: <anonymous>] [ecid:
Thanks,
Arun JadhavHi Arun,
Problem is that B2B is not able to decrypt the incoming message. There could be two possible reasons behind this -
1. Your TP is not encrypting the message from your client certificate's public key (you should provide your client cert's public key to your TP and ask them to use that for encrypting the messages)
2. You have not set up the corresponding private key at your B2B (in Host TP configuration and in deliver channel configuration of host TP)
Please paste the complete log here/mail it to my id.
Remote trading partner should encrypt the message using your your client cert's public key and you should decrypt it using your private key.
For this ask your trading partner to encrypt the message using your provided public cert and at your side select the same cert in the delivery channel of your host DC under encryption credential. Make sure that keystore is containing this cert's private key.
Regards,
Anuj -
Yahoo! Cannot add files to email.
Yahoo!
Ever since I downloaded Safari 5, I cannot add files to emails (esp photos). Safari would freeze up, and I would have to power down and reboot in order to surf. Any solutions to this matter other than switching to gmail?HI,
BrowserPlus is causing problems when attaching files to Yahoo mail:
Go here for uninstall instructions.
http://help.yahoo.com/l/us/yahoo/browserplus/uninstall.html
Carolyn -
I CANNOT ADD FILES TO EMAIL IN FIREFOX BUT I HAVE NO PROBLEMS WITH WINDOWS INTERNET EXPLORER. wHY?
I CANNOT ADD FILES TO EMAIL IN FIREFOX BUT I HAVE NO PROBLEMS WHEN USING WINDOWS INTERNET EXPLORER
Perform the suggestions mentioned in the following articles:
* Make sure that you are using the '''"Remember History"''' setting as described in this article -> [[Settings for privacy, browsing history and do-not-track]]
* [https://support.mozilla.com/en-US/kb/Template:clearCookiesCache Clear Cookies & Cache]
* [[How to clear the cache#w_clear-the-cache|Clear the Network Cache]]
Check and tell if its working. -
Error CodeB2B-51093 Decrypting S/MIME message failed
Hi,
We are not able to decrypt the messages received from partner
B2B 11.1.1.4
sending 820 over AS2
Receiving over https://host:port/b2b/httpreceiver
Keystore: configured and contains certs for the TP and for host TP.
Error :Error CodeB2B-51093 Decrypting S/MIME message failed
Also, i want to know when we are receiving the messges over https://host:port/b2b/httpreceiver how does B2B know which cert to use for decryptError CodeB2B-51093 Decrypting S/MIME message failed Make sure that your TP is encrypting the message using public key which you shared with him and you have configured corresponding private key in the keystore on B2B console. You may refer -
http://anuj-dwivedi.blogspot.com/2011/04/implementing-message-security-in-oracle.html
Regards,
Anuj -
Cannot view images in emails on Safari or Firefox
I cannot view images in emails on multiple accounts from different sites (Gmail, AOL Mail, Hotmail) on Safari and Firefox on my Macbook. When I click "Show Content" on the emails to unblock the spam protection, either all of the images don't show up and instead I get the "?" boxes or only some of the images show up. Can anyone help me out? I have an important email I need to print out but need to see all the images before doing so (plus, it's just plain annoying). Thanks.
I have the same problem. Since a while I can no longer view images in html emails even though it was set to do so in the prefs. I am considering ditching the plist file but am concerned that I will lose more valuable info (like account passwords and such). What does the pref file (plist) hold?
-
have a question mark in the place of my mail's icon and i cannot get into my email. I found my email folder in the library ,but it is not in applications. How do i get my email back ?
you should look in your applications folder to see if mail is still there. the dock icon is pointing to mail being in your applications folder. it has probably been moved or deleted for some reason from the app folder. do a spotlight search for your mail program. if it is still on your computer, move it back to the applications folder and when you click the question mark, it should see it is back and open. The email folder in your library shouldn't have to be touched. you need mail.app itself.
Maybe you are looking for
-
How do I move my home folder to secondary drive in ML?
Hello, I've tried a bunch of methods I found by searching but they all appear to only be for Lion. It was basically moving the folder while logged in from another admin account, and repointing to the new location from System Preferences. Everytime I
-
How do I get my icon back on Macbook Pro
I was trying to move the FB icon to the main display by dragging and dropping it but it disappeared. Please show me how to get the icon back on my main screen please. I have a Macbook Pro.
-
I have just installed CS4 web premium on my iMac. I didn't upgrade After Effects so am still using CS3. When I go to Browse Presets... from the Effects palette, Bridge CS4 opens, but the path to my presets is not working. It is opening at the last vi
-
PackageMaker localization problem
Hi, I am creating .pkg for my application using PackageMaker. I am providing support for 7 langauage English, French, German, Italian, Korean, Russian,Spanish. In Edit Interface, i am using abbrevation : en, fr, de, it, ko, ru and es fro these langau
-
Reloading a JAR file after it has been updated.
I am adding an Auto-upgrade feature to our Java application. Basically the application has 2 JAR files : the StartUp JAR file and the main application JAR file. When the StartUp JAR file is run it checks whether there is a newer version of the main a