Feedback on the new Secure mail feature.

David Lawrence dkl at
Mon May 2 03:40:22 UTC 2011

On 4/30/11 6:01 AM, Tony Mechelynck wrote:
> On 30/04/11 11:16, Ludovic Hirlimann wrote:
>> 1) The documenation isn't really clear on the fact that we should or
>> should not include the delimiters (ie both for pgp and certs, do we need
>> to copy paste the lines -----BEGIN CERTIFICATE----- or the equivalent
>> from a pgp amored key) ?

Yes you need the delimiters.

>> 2) Bugzilla misses a send me an ecrypted email so I can verify that I
>> didn't screw up.  I didn't receive any encrypted emails because bugzilla
>> activity is low, would be nice if I could test my settings before
>> realising that I'll get non functionnal mails from bugzilla)

Currently we are working on enabling some groups in Bugzilla to be 
"Secure Mail" groups
which will mean any bugs marked as private for one or more those groups 
will have very content
limited email notifications. If then you have a key store in Bugzilla 
and you are in one of those
groups, you will receive a full version of the notification except 
encrypted. Otherwise all you
know is that something has changed.

Another use for the Secure Mail extension is that also if you have a key 
stored in Bugzilla and you
issue a password reset for your account, that email will be encrypted so 
noone can see the reset
URL inside.

This extension is not on landfill AFAIK, but it can be downloaded using 
BZR at


David Lawrence
dkl at

More information about the developers mailing list