/usr/share/doc/courier-doc/htmldoc/mimegpg.html is in courier-doc 0.68.2-1ubuntu3.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 | <?xml version="1.0"?>
<html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/><title>mimegpg</title><link rel="stylesheet" href="style.css" type="text/css"/><meta name="generator" content="DocBook XSL Stylesheets V1.75.2"/><link rel="home" href="#id344657" title="mimegpg"/><link xmlns="" rel="stylesheet" type="text/css" href="manpage.css"/><meta xmlns="" name="MSSmartTagsPreventParsing" content="TRUE"/><link xmlns="" rel="icon" href="icon.gif" type="image/gif"/><!--
Copyright 1998 - 2009 Double Precision, Inc. See COPYING for distribution
information.
--></head><body><div class="refentry" title="mimegpg"><a id="id344657" shape="rect"> </a><div class="titlepage"/><div class="refnamediv"><h2>Name</h2><p>mimegpg — MIME-GPG utility</p></div><div class="refsynopsisdiv" title="Synopsis"><h2>Synopsis</h2><div class="cmdsynopsis"><p><code class="command">mimegpg</code> [-s] [-E] [-e] [-c] [-d] [-p <em class="replaceable"><code>n</code></em>] {--} {gpg options...}</p></div></div><div class="refsect1" title="DESCRIPTION"><a id="id344451" shape="rect"> </a><h2>DESCRIPTION</h2><p>
The <span class="command"><strong>mimegpg</strong></span> tool signs, encrypts, or decrypts MIME-formatted E-mail
messages using GnuPG. <span class="command"><strong>mimegpg</strong></span> does not contain any encryption code. It
uses the GnuPG utility for all encryption and decryption functions.</p><p>
The <code class="option">-s</code> option signs an E-mail message. The <code class="option">-E</code> or
the <code class="option">-e</code> option encrypts the E-mail message. Specifying both
<code class="option">-E/-e</code> and <code class="option">-s</code> encrypts and signs the E-mail message
in a single step. The <code class="option">-d</code> option decrypts the message. The
<code class="option">-c</code> option checks signatures.</p><p>
<span class="command"><strong>mimegpg</strong></span> works as a filter. It reads an E-mail message from
standard input, which must be a MIME-formatted message. <span class="command"><strong>mimegpg</strong></span> signs,
encrypts, and/or decrypts the message; then writes the encrypted, signed, or
decrypted MIME message on standard output.</p><p>
The standard input to <span class="command"><strong>mimegpg</strong></span> must be a MIME E-mail message, with a
"<code class="literal">Mime Version: 1.0</code>" header - even if the message does not contain any
attachments. If the message contains any attachments, they are also signed
and/or encrypted, individually.</p><p>
<span class="command"><strong>mimegpg</strong></span> automatically runs GnuPG, with the required options.
<span class="command"><strong>mimegpg</strong></span>'s options may also be followed by a single <code class="literal">--</code>
option; any remaining command line options are passed as additional options
to GnuPG. The <code class="option">-E/-e</code> option usually requires at least one
<code class="option">-r</code> GnuPG option, which may be specified in this fashion.</p><p>
The <code class="option">-p</code> option specifies a file descriptor that contains any
required passphrase. Any other valid GnuPG options may follow a double-dash,
"--", as long as it makes sense for this operation (note that <span class="command"><strong>mimegpg</strong></span>
automatically adds any GnuPG options that are needed to perform the given
operation). The "--no-tty" option can be useful when <span class="command"><strong>mimegpg</strong></span> is
used in a non-interactive mode. As always, secret keys that are
password-protected secret keys cannot be used in the <code class="option">--no-tty</code>
mode, unless the <code class="option">-p</code> option is used.</p><div class="refsect2" title="SIGNING AND ENCRYPTING MESSAGES"><a id="id379023" shape="rect"> </a><h3>SIGNING AND ENCRYPTING MESSAGES</h3><p>
Use the <code class="option">-s</code> option to sign MIME message content. Use the
<code class="option">-E</code> option to encrypt it. Use both options to both sign and
encrypt. Follow with <code class="literal">--</code>, then any other GnuPG options. The
<code class="option">-E</code> option will require at least one <code class="option">-r</code> GnuPG
option.</p><p>
The <code class="option">-E</code> option encapsulates the message content and all the
attachments into a single encrypted MIME object. Some mail software cannot
handle encapsulated content. The <code class="option">-e</code> option encrypts each
attachment separately, without encapsulation.</p><p>
If a secret key used for signing is password protected, the prompt to
enter the password will be issued directly by GnuPG. Note that the
<code class="option">-s</code> and the <code class="option">-e</code> (but not <code class="option">-E</code>) options may
issue multiple password prompts in interactive mode. <span class="command"><strong>mimegpg</strong></span> runs
GnuPG multiple times if the MIME message contains attachments. GnuPG will be
invoked separately for each attachment in the MIME message, and each
invocation will prompt for any required key password. Note that the initial
message headers are not signed and/or encrypted, except for the MIME headers
themselves. However, any <code class="literal">message/rfc822</code> MIME content - attached
messages - are encrypted/signed in their entirety, headers and content.</p></div><div class="refsect2" title="DECRYPTING AND CHECKING SIGNATURES"><a id="id343593" shape="rect"> </a><h3>DECRYPTING AND CHECKING SIGNATURES</h3><p>
The <code class="option">-d</code> option attempts to decrypt any encrypted content in a
MIME message. The <code class="option">-c</code> option attempts to verify signatures of
any signed content. Both <code class="option">-c</code> and <code class="option">-d</code>
can be specified at the
same time. <code class="option">-d</code> looks for any <code class="literal">multipart/encrypted</code>
MIME content, then attempts to decrypt it. <code class="option">-c</code> looks for any
<code class="literal">multipart/signed</code> MIME content, then attempts to verify the
signature.</p><p>
The <code class="option">-c</code> and <code class="option">-d</code> options replace the
<code class="literal">multipart/signed</code> and <code class="literal">multipart/encrypted</code> MIME
content with a <code class="literal">multipart/x-mimepgp</code> section, that contains an
additional attribute called "xpgpstatus". The value of the attribute is set
to the exit code of GnuPG. Succesfully decrypting the message and/or
verifying the signature sets the exit code to 0. A non-zero exit code
indicates that the signature could not be verified, or the message could not
be decrypted.</p><p>
The first section in this <code class="literal">multipart/x-mimepgp</code> is a
<code class="literal">text/plain</code> section that contains any messages from GnuPG. The
second section is any decrypted or signed content. <span class="command"><strong>mimegpg</strong></span> will
include the signed content even if the signature could not be verified (check
<code class="literal">xpgpstatus</code>). Encrypted content that could not be decrypted will
not be included (obviously).</p><p>
Note - any existing x-mimegpg MIME section will have its content-type
quietly reset to multipart/mixed, in order to avoid confusion (except when
this is what got decrypted).</p></div></div><div class="refsect1" title="SEE ALSO"><a id="id343834" shape="rect"> </a><h2>SEE ALSO</h2><p>
<a class="ulink" href="reformime.html" target="_top" shape="rect"><span class="citerefentry"><span class="refentrytitle">reformime</span>(1)</span></a>.</p></div></div></body></html>
|