cranix
/
kuvert
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
141 Commits
2 Branches
0 Tags
228 KiB
Perl 77.7%
Shell 10.2%
C 7.3%
Ruby 2.3%
Dockerfile 1.4%
Other 1.1%
 
 
 
 
 
 
Go to file
cranix c3429b6308 Added quick 'n' dirty script for generation of 
configs with various combinations of defaultaction/recipent-specyfic action pairs
 		2017-03-02 23:23:12 +01:00
.gitignore converted from RCS 2015-03-21 12:08:05 +10:00
Dockerfile run.sh: using inotifywait to automagically reload kuvert when gpg keyring changes; also, by default running kuvert with the debug mode on 2017-02-24 12:41:23 +01:00
GPL converted from RCS 2015-03-21 12:08:05 +10:00
LICENSE Initial commit 2015-03-21 12:00:46 +10:00
Makefile converted from RCS 2015-03-21 12:08:05 +10:00
README updated text a bit 2013-11-25 11:49:53 +00:00
THANKS converted from RCS 2015-03-21 12:08:05 +10:00
config_gen.rb Added quick 'n' dirty script for generation of 2017-03-02 23:23:12 +01:00
config_gen.rc Added quick 'n' dirty script for generation of 2017-03-02 23:23:12 +01:00
dot-kuvert dot-kuvert and dot-kuvert.docker updated for mahost config setting 2017-02-23 18:13:20 +01:00
dot-kuvert.docker more changes and explanation of assumptions 2017-02-23 23:12:35 +01:00
kuvert Removed printing a few unnesesary debug information. 2017-03-02 16:08:48 +01:00
kuvert_submit.c converted from RCS 2015-03-21 12:08:05 +10:00
kuvert_submit.pod added -bv detection 2009-03-16 06:57:45 +00:00
plainAUTH.pm converted from RCS 2015-03-21 12:08:05 +10:00
run.sh run.sh: config can be on a read-only filesystem; warn instead of fail when unable to change ower/perms 2017-02-24 18:23:40 +01:00

README 

this is kuvert, a wrapper around sendmail or other MTAs that
does gpg signing/signing+encrypting transparently, based
on the content of your public keyring(s) and your preferences.

how it works:
-------------

you need to configure your MUA to submit mails to kuvert instead of 
directly. you configure kuvert either to present an SMTP server to
your MUA, or you make your MUA to use kuvert_submit instead of executing
/usr/sbin/sendmail. kuvert_submit will spool the mail
in kuvert's queue iff there is a suitable configuration file.

kuvert is the tool that takes care of mangling the email. it reads the 
queue periodically and handles emails in the queue: signing or encrypting
the mail, then handing it over to /usr/lib/sendmail or an external SMTP 
server for transport.

(why a queue? because i thought it might be useful to make sure that none of
your emails leaves your system without kuvert handing it. you might be 
very paranoid, and kill kuvert whenever you leave your box (and remove
the keyrings as well).)

installation:
-------------

on debian systems you simply install the kuvert package, construct
a suitable .kuvert configuration file and off you go. 
an example config file is provided 
at /usr/share/doc/kuvert/examples/dot-kuvert.

on other systems you need to do the following:

you need perl perl 5.004+, gpg and a raft of perl modules:
MIME::Parser, Mail::Address, Net::SMTPS, Sys::Hostname, Net::Server::Mail,
Authen::SASL, IO::Socket::INET, Filehandle, File::Slurp, File::Temp, Fcntl 
and Time::HiRes.
some of those are part of a standard perl intall, others you'll have to
get from your nearest CPAN archive and install.
optional: get linux-kernel keyutils package, the gpg-agent or some 
other passphrase cache of your choice.

run make, make install DESTDIR=/ as root
-> kuvert, kuvert_submit, the manpages and one helper module 
will be installed in /usr/bin, /usr/share/man/man1 and 
/usr/share/perl5/Net/Server/Mail/ESMTP/, respectively.

configuration:
--------------

read the manpages for kuvert(1) and kuvert_submit(1) and 
consult the example config file "dot-kuvert". you will need
to create your own config file as ~/.kuvert. sorry, no autoconfig here:
this step is too crucial for a mere robot to perform. 

then start kuvert and inject a testmail, look at the logs to check
if everything works correctly.

(historical note: kuvert came into existence in 1996 as pgpmail and
was used only privately until 99, when it was extended and renamed
to guard. some of my friends started using this software, and in 
2001 it was finally re-christened kuvert, extended even further
and debianized. in 2008 it received a major overhaul to also provide 
inbound smtp as submission mechanism, outbound smtp transport and better
controllability via email addresses. until 2008 kuvert supported pgp2.x.)

please report bugs to me, Alexander Zangerl, <az@snafu.priv.at>.

The original source can always be found at:
	http://www.snafu.priv.at/kuvert/

Copyright (C) 1999-2013 Alexander Zangerl

  This program is free software; you can redistribute it and/or modify
  it under the terms of the GNU General Public License version 2
  as published by the Free Software Foundation.

  This program is distributed in the hope that it will be useful,
  but WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  GNU General Public License for more details.

  You should have received a copy of the GNU General Public License with
  the Debian GNU/Linux distribution in file /usr/share/common-licenses/GPL;
  if not, write to the Free Software Foundation, Inc., 59 Temple Place,
  Suite 330, Boston, MA  02111-1307  USA