Mail Security: Email encryption - prevent void Certificates
Currently if a user is enabled for mail encryption and there is an existing certificate it will be used - there's no check if it's still valid (date).
PLEASE add a check that expired certificates are not longer used!
Joel L. commented
All internal users' certificates need to have an plainly displayed expiration date. This is not available and the only indication is when an external party contacts us to inform of undeliverable email due to expired certificates.
"The admin mail also should be send 14 days before a certificate become expired."
That will be definitely something Astaro should implement.
Jürgen Roth commented
I recommend: bounce it to the user with an error message (NDR - none delivery report) and also send a message to the admin. the admin mail also should be send 14 days before a certificate become expired.
I'd report it to the user with an error, and an admin has to decide how to procced.
I'd had the problem that some receipient bounced my message back as it was encrypted with an expired certificate...
Jon Etkins commented
How do you suggest handling an expired certificate? Should it
* just send the mail unencrypted (NOT recommended I would think)?
* bounce it to the user with an error message?
* notify the user and hold it in a queue until the certificate is updated?
* if so, how long should it hold it, and what should it do with it after that time?