Hi,
First off, let me say that I appreciate your work on the Anomy
Sanitizer. It's a very nice piece of software that I like very much.
Nevertheless, here's a bug I stumbled upon, which happens only in
conjunction with PGP email, and only if $feat_trust_pgp = 0
Here's what happens:
If you look at my signature of the email, then you will notice that
it contains a line of just two spaces and nothing else (right before
the quote).
GnuPG, which I use to sign my mails the modern way (MIME) transforms
this signature into:
--=20
martin; (greetings from the heart of the sun.)
\____ echo mailto: !#^."<*>"|tr "<*> mailto:" net@madduck
=20
time wounds all heels.
-- groucho marx
After passing the sanitizer, this signature then looks like so:
--=20
martin; (greetings from the heart of the sun.)
\____ echo mailto: !#^."<*>"|tr "<*> mailto:" net@madduck
=20=20
time wounds all heels.
-- groucho marx
which then causes the PGP signature to be invalid (obviously). This
looks to me like some error in the MIME handling part of the Anomy
Sanitizer, one which you may have overlooked.
Please let me know if you think that this is my error. I would like to
enable the sanitizer *without* trusting PGP senders, but I can't
afford to give up the functionality of PGP...
Thanks,
--
martin; (greetings from the heart of the sun.)
\____ echo mailto: !#^."<*>"|tr "<*> mailto:" net@madduck
time wounds all heels.
-- groucho marx
Attachments:
+ http://mailtools.anomy.net/archives/anomy-bugs//1d/a1/3d6a7ec8/01.unnamed