On 6/17/24 20:21, Henning Hraban Ramm wrote:
[...] Can confirm.
Many thanks for your testing, Hraban.
Before patching, I checked with … – Acrobat Reader: doesn’t recognize a signature – Foxit Reader: "a signature is invalid"
The signature is invalid since it leaves an space outside the signing range.
After patching, I checked with … – Acrobat Reader: doesn’t recognize a signature – Foxit Reader: "there’s something wrong with a signature" (i.e. different message)
The certificate is self-signed. Its validity (not the correctness of the signature) is problematic to say the least.
– PDF Studio Pro 2023: shows signature, "don’t know if valid, issuer unknown" etc.
Again, as a certificate, this is a crappy. But this detects document modifications after being signed. Just in case Hans reads the message: It would be great that OpenSSL asks for the password directly. This is a basic security issue, not to leave plain-text passwords on the terminal. Many thanks for your help, Pablo