Edit this Page

English

Deutsch

MailSealer Settings

In the general settings, you can select the encryption methods to be used and the desired order.
The method that is best able to implement the corresponding policy will then be used.

Certificate settings

Certificates can be collected automatically
OCSP is used to query the status (validity) of certificates via the Online Certificate Status Protocol.
CRLs (Certificate Revocation Lists) are used to detect revoked certificates if they have been misused and marked as invalid by the certificate issuer.

Signature settings

Enabled Plain Text Signature adds the signature as a separate MIME part of the email.
Sign before encrypt ensures that signature information cannot be detected by intermediate attackers
The certificate chain can be added to the signature
Signature methods can be customised if desired, default values are SHA-256 via RSA

Encryption settings

Insert sender key is necessary if the sender wants to redeliver the mail from the archive later on, so that it can be decrypted as well
Encryption methods can be adjusted if desired, the default values are AES-256 via RSA.

The settings are saved via "Apply settings".

Key Settings

PGP keys can be installed automatically if required
The key strength (default RSA 3072 bit) can be adjusted.
By default, created PGP keys are valid indefinitely; this can be adjusted with the expiration time if desired.
Public keys of the communication partners can be collected by the appliance with Collect Public Keys, if these are processed as attachments in mails by the appliance.

Signature settings

The sender's public key can be sent as well
Signature methods can be customised on request, the default is SHA-256

Encryption settings

Insert sender key is necessary if the sender wants to have the mail delivered again later from the archive so that it can also be decrypted
Encryption methods can be adjusted if desired, the default values are AES-256.

The settings are saved via "Apply settings".