Plugin Directory

Test out the new Plugin Directory and let us know what you think.
!This plugin hasn’t been updated in over 2 years. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.

S/MIME Plugin

The S/MIME plugin adds S/MIME functionality to outgoing e-mails. This allows notifications to be securely encrypted to recipients using x509 certifi

Do I really need to use this plugin?

Probably not. This plugin has specific uses, and requires an entire Public Key Infrastructure (PKI) to support it. It was originally designed for my office, where we have our web server and our mail server hosted remotely. We use WordPress for a project log so that we can all keep up to date on what is going on, but it deals with client sensitive data. We couldn't use the notifications that WordPress and other plugins provide.

Will there be support for X encryption?

There is preliminary support for OpenPGP encryption which does not require an existing infrastructure.

How well does it play with other plugins?

IF the plugin sends mail through the wp_mail interface, it will play nice with the S/MIME plugin. MANY do not. I personally use Skippy's Subscribe2 which does not, but you can edit the other plugin's source to use wp_mail instead of PHP's mail function. It will also not currently play nice with the PHPMailer plugin since S/MIME calls PHP's mail directly. Plans are in the works to allow alternate mailers to be used.

What about WordPress 1.5?

The plugin does work with WordPress 1.5, but you must edit some of the core code: 1. Edit the file wp-includes/functions.php 2. Search for the wp_mail function: function wp_mail($to, $subject, $message, $headers= '') { 3. At the end of that function, change @mail to @smimemailer

What about WordPress

It might, I haven't tried it. I wouldn't place any bets on it though.

Is it safe?

In order to send signed messages, the blog must be assigned a certificate and a private key. The blog must know the private key, and it is stored (unencrypted) in the database. I suggest that you only use the encryption capabilities if you are worried about non-repudiation of the blog's key - it's not guaranteed. (I'm willing to accept ideas on changing this though)

Last Updated: 12 years ago
Active Installs: Less than 10


0 out of 5 stars


0 of 1 support threads in the last two months have been marked resolved.

Got something to say? Need help?


Not enough data

0 people say it works.
0 people say it's broken.