tags:

views:

3200

answers:

2

We have an old process (VBScript) that reads a common mailbox and processes certain emails into a database.

New regulations have all messages with attachments now being digitally signed.

The process now only extracts one file (smime.p7m). Using a GUI-based viewer, I can see the embedded files and extract them with no problem. However, what I really need is a command-line based extracter that will write out the embedded files (PDFs, DOCs, XLSs) - they're not encrypted, just signed. I tested this by using a laptop that had no certificates and simply opened the smime.p7m file with the aforementioned viewer.

It looks like OpenSSL will decode/extract this and someone managed to get a version compiled on Windows. However, a lot of trial and error testing of the executable has been frustrating because I can't find the right combination of flags to just say "open the smime.p7m file and write out all the embedded files you find". "openssl smime" always seems to want a "cert.pem" after all the options and I haven't got that.

What am I missing? Thanks in advance.

A: 

Looks like the only available option is to write a simple program using Chilkat's library. This option costs $149 or $289, depending on what kind of license, per developer, but at least it's royalty-free.

David
+3  A: 

Did you try the "-noverify" option of openssl?

For a signed-only message, you can use "openssl smime -verify -in -noverify -out /tmp/blob"

Then you can use a RFC822-like parser to get the body and attachment(s) out of that "blob". That means that your parser has to be capable of encodings like quoted-printable and base64.

Junping
Can't say that I did. Just trying to get OpenSSL working at all was a chore in this environment (military site) and I never really succeeded. In the end, writing a new program to do the work, utilizing the Chilkat libraries got the job done quickly. Thanks for the idea, though.
David
I have tried and the suggested command line works nicely.
dwery