Re: encrypt the sent folder - offline task
On Tue, Dec 05, 2006 at 07:13:01PM +0200, Eray Aslan wrote: Hi, How can I make sure that all the emails in my Sent folder are encrypted and can't be read without my private key? In other words, I want my email in my Sent folder to be encrypted even though the email sent on the wire is plain text. Encrypt to self option only works if I send an encrypted mail. I couldn't get it to work all the time. [...]/cy Email client is Thunderbird/Enigmail. Mails are stored on IMAP server if it makes any difference. [I'm making assumptions you are uni*-enabled] I do not have a full solution for you but I can propose to you another way of accomplishing the task. Modifying your client or plugin may not be the way you want to go. I'd suggest placing the feature request, but for the meantime. Some scripting or configuring will probably be in order. What you might look at doing is, if you can stand your sent-mail being unencrypted on the IMAP server for a little while, copy it or sync it to your local machine (or to a server machine somewhere) with an IMAP mail copy tool[1] and encrypt them one message at a time which you could then sync back onto your IMAP storage and delete the plain-text version. You might consider two outgoing folders in your IMAP storage space: sent-plain and sent-enciphered. Another possibility would be to setup Thunderbird to write sent mail to a local folder on the machine you work on, do an encrypt-to-self operation (automated preferably, a batch job moving through your local spool) and then copy the enciphered version to a sent-mail folder on the IMAP server (via SMTP or an IMAP copy tool). You could also Bcc: all mails you send to an address where you have a mailhandler setup that bounces an encrypted version back to your 'IMAP email' and use server side filtering (SIEVE) to place those mails in sent-enciphered. I'm sure you could get procmail to do this too. To prevent the plaintext version from hanging around, you could set outgoing emails in Thunderbird to write to the local filesystem (or /dev/null somehow) instead of the default location on your IMAP space. There are a few tools that are designed for moving things about your IMAP storage and/or to a local file system. A small list and a bit of discussion about a few of them can be found at [1] http://barnson.org/node/81 You would have to give up the body-text search for sure but I'm guessing you're not as worried about that as others seem to think you might be. A compromise might be to 'digestify' your mails so they are stored in day or week long chunks on the server. These would only require one decrypt per many messages rather than a resource intensive operation per message. Store in the 'real' sent-mail folder a dummy message with a body that hints to where the pgp text can be found. An approach like this might be useful to the plugin folks - one decrypt per many messages would be a huge speedup if body-text search were needed. Store in the body a machine readable index hint. If you have any control over your mail server [you may not but others on the list might] you can encrypt/sign all outgoing mail or perform other fun tasks with some of the tools you can find listed at: http://www.gnupg.org/(en)/related_software/frontends.html#mua And for those configuring your own mail servers, be sure you've got yours set to opportunistically encrypt traffic with TLS. That's just good sense, regardless if you use OpenPGP or not. (Setting it up is trivial on Postfix.) --... ...-- -.. . -.- -... ..--- ..- .-. .- =Cyrus -- cyrus@ [ Semper Curiosus .0. ] 80d[ ..0 ] dot[ 000 ] org[ OpenPGP key: 0xFF28DF5A ] pgpdhSQ0Feerw.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
Andrew Berg wrote: TrueCrypt works also on Linux (kernel 2.6.5 and up). The advantage is that a TC volume can be accessed on both Linux and windows - very usefull when I use the same USB stick both at home and on my work. Uhhh... TC requires admin rights in order to mount a virtual drive. You must have admin rights at work. If not, how are you able to use it? I have on my local machine. As a programmer, I need to. -- ir. J.C.A. Wevers // Physics and science fiction site: [EMAIL PROTECTED] // http://www.xs4all.nl/~johanw/index.html PGP/GPG public keys at http://www.xs4all.nl/~johanw/pgpkeys.html ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
Todd Zullinger wrote: Eray Aslan wrote: Surely there must be a better way. These all require admin access to the IMAP server. The software already does what I want some of the time (when I send the recipient encrypted email). I just want it to do it all the time. This doesn't like an entirely unreasonable feature request to make of Enigmail. Perhaps you'd want to check in with the Enigmail folks to see if the would consider adding such a feature? It has some potential to be useful but it might be icky to implement. Sounds unreasonable to me. It's completely beyond our scope to implement. Why is this unreasonable? You are asking an extension with hooks in certain steps of a MUA (Thunderbird/Seamonkey) to set policy on an IMAP server out of our control. Enigmail gets the message after the user clicks 'Send', does its processing, and passes the result back to the Mozilla mail-news code for mailing and storage. The extension has no control or interest in how the user has configured the MUA to handle sent items. In both the IMAP case and the local storage case, the message that is saved is the exact message that is sent on the wire. This is not an Enigmail function, but a function of the mail agent. There is no provision for processing a message on multiple paths and specifying separate handling on each path when sending, nor would it be reasonable to expect there to be. There are two RFEs filed in Bugzilla to allow the unencrypted storage of encrypted items. One applies to sent items, the other to received ones. These may be possible at some time in the future, but no one is making any promises. -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A what's the key to success?/ two words: good decisions. what's the key to good decisions? / one word: experience. how do i get experience? / two words: bad decisions. Just how do the residents of Haiku, Hawai'i hold conversations? signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
John Clizbe wrote: [snip] There is no provision for processing a message on multiple paths and specifying separate handling on each path when sending, nor would it be reasonable to expect there to be. Ahh, this is the problem. There are two RFEs filed in Bugzilla to allow the unencrypted storage of encrypted items. One applies to sent items, the other to received ones. These may be possible at some time in the future, but no one is making any promises. Should I open another RFE? These are all the same problem after all. And thank you for the explanation. -- Eray signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
John Clizbe wrote: Sounds unreasonable to me. It's completely beyond our scope to implement. That seems more like not feasible than unreasonable. But the results are the same. :-) Thank you for the explanation. -- ToddOpenPGP - KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp == The American Republic will endure until the day Congress discovers that it can bribe the public with the public's money. -- Alexis De Tocqueville. pgpnGAm8vs6jh.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
Eray Aslan wrote: I thought it was a mis-configuration on my part. Nope. As John pointed out this is simply not feasible to do from within Enigmail based on the way it has to interact with Thunderbird. If you don't trust the IMAP server admins, then you should store your mail somewhere you do trust. Nope. I am the admin. I'll assume that means you trust you. ;-) If you are worried about someone cracking the server and getting at your sent messages then encryption on the server may be sufficient, but would involve either changes to you mail client or some other sort of access to your mailbox on the server. The servers in question already has encryption at the file system level with cryptsetupLUKS for Linux and truecrypt for windows boxes. But the trouble is these do not provide any defense against attacks through the network. They will happily serve the emails thru the network to the appropriate user when asked. FS encryption is only good at boot time. Once the partition is mounted, you can access the data. True. An encrypted FS that's always mounted isn't too secure. I can give the end users a smartcard or a usb stick. The objective is to provide a solution so that not even the admin can read the emails Well, as I understand your original query, you're looking to get security on the sent messages that are not encrypted to the recipient. In that case, the message goes out via IMAP and SMTP on the server and thus the admin could just grab a copy somewhere in that process. That'd be a lot easier to do than trying to crack the gpg encrypted message in your sent mailbox. ISTM that the only good way for you to get the security you want in this case is to send the mail encrypted in the first place. -- ToddOpenPGP - KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp == Rupert! I told you to watch the bags! You were watching the boys again weren't you! -- Stewie Griffin pgprVzBoQm0pY.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Eray Aslan wrote: Please tell if there is an alternative. Your best alternative at this point is to hire a professional information security consultant. Your needs are highly specialized. That means that nobody here can give you good advice on what to do, since none of us here are fully briefed on your infrastructure, your operations, your business, your threats, or any of the other dozens of things that go into a risk management plan. You're also going to need to address problems with public-key infrastructure if you want to deploy this for your employees. PKI is the big elephant in the middle of the room that nobody talks about; existing PKI designs are, speaking generally, absolutely terrible. Deploying PKI is something you'll want a specialist for. GnuPG is a tool. It is not a solution. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJFdqYEAAoJELcA9IL+r4EJes4IAKE+PHVnY3actxoElF1QB0iR qH5iiRsLM7Dw9zCLSaLoujWOyzVMLF0N0lBXx88bB4MS8kj16daBgbCs7paasyyy qAPER++Ra6ahIrmsWHERdmWJfhuqGab0o4f8jTyIZcBlfxJH+QMPp/b6mjek2XxU U8z//4EFaCVPAzX+HvAEl/Mo6EJ0O+8E0y7G9X0lnWO4caB8BUjMtXtb4nxAZPz7 U2qOfyBEpTHtyPG/u8dLWFokl6nX9GQhfVHCmWhjSNMrmlxtPmTHn68ycA33z8Ah L/6FWTzmg7Shd/XLg2TFWA0BrxE/7kmxf/FMTHYE8RIRM2KE0Gf8JTmut8utlvI= =TySs -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
Robert J. Hansen wrote: Your best alternative at this point is to hire a professional information security consultant. [snip] I'll fight for the budget but it's not likely. Thanks anyway. -- Eray signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
John Clizbe wrote: Eray Aslan wrote: The servers in question already have encryption at the file system level with cryptsetupLUKS for Linux and truecrypt for windows boxes. But the trouble is these do not provide any defense against attacks through the network. They will happily serve the emails thru the network to the appropriate user when asked. FS encryption is only good at boot time. Once the partition is mounted, you can access the data. Once again, this would appear to be a server configuration issue, not a GnuPG issue. I think I am not expressing myself clearly. If it is possible for someone to easily spoof a user's credentials and access their emails, then it's an authentication issue. No, see below. If you're worried about eavesdropping on the wire, you want SSL or TLS to secure the link. In the case given of IMAP, you want IMAP + TLS or IMAP + SSL We provide IMAP+SSL and POP3+SSL email access to our employees. Plain IMAP and POP3 is not provided. SMTP is also secured. We also provide webmail service secured with HTTPS. Again plain HTTP is not allowed. This is basic stuff. So eavesdropping on the wire is not my main concern. And mails are stored on IMAP servers with encrypted file systems. This is not an authentiation issue because you can change the authentication method at the server. I want the emails to stay encrypted even if the server is compromised. I don't want anyone with the root password to say that is what you wrote 2 months ago unless he has my secret key. And that is what GnuPG does, no? And since all our email accounts are virtual - meaning thay don't have a shell account, dont have a home directory and emails are stored under the same UID at the server - I have to solve this at the MUA level. Please tell if there is an alternative. -- Eray signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder (Eray Aslan)
On Wed, 06 Dec 2006 10:59:14 -0500 [EMAIL PROTECTED] wrote: Send Gnupg-users mailing list submissions to gnupg-users@gnupg.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.gnupg.org/mailman/listinfo/gnupg-users or, via email, send a message with subject or body 'help' to [EMAIL PROTECTED] You can reach the person managing the list at Message: 1 Date: Wed, 06 Dec 2006 12:52:14 +0200 From: Eray Aslan [EMAIL PROTECTED] We provide IMAP+SSL and POP3+SSL email access to our employees. Plain IMAP and POP3 is not provided. SMTP is also secured. We also provide webmail service secured with HTTPS. Again plain HTTP is not allowed. This is basic stuff. So eavesdropping on the wire is not my main concern. And mails are stored on IMAP servers with encrypted file systems. This is not an authentiation issue because you can change the authentication method at the server. I want the emails to stay encrypted even if the server is compromised. I don't want anyone with the root password to say that is what you wrote 2 months ago unless he has my secret key. And that is what GnuPG does, no? And since all our email accounts are virtual - meaning thay don't have a shell account, dont have a home directory and emails are stored under the same UID at the server - I have to solve this at the MUA level. Please tell if there is an alternative. at the risk of sounding simplistic, maybe there is not too difficult workaround: [1] make it an option to save mail that is sent, and make the default as 'not' saving it [2]those wishing to have their sent mail stored encrypted, can forward the sent mail to to self, (as this is not usually done, it must be implemented to 'allow' it, but that shouldn't be that hard to do), and encrypt the forwarded mail with the sender's default key [3] add something in the subject line like: 'forwarded mail of 'date', encrypted' [4] add a disclaimer that users choosing to save mail in the 'sent' folder without encrypting it, will have it stored as cleartext on the server this keeps the users informed, gives them a choice, allows them to be protected (and does so by default) and protects the provider vedaal Concerned about your privacy? Instantly send FREE secure email, no account required http://www.hushmail.com/send?l=480 Get the best prices on SSL certificates from Hushmail https://www.hushssl.com?l=485 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
Todd Zullinger wrote: That seems more like not feasible than unreasonable. But the results are the same. :-) Infeasible: we have the manpower, we have the tools, we have the talent, but the architecture is working against us in a big way. Unreasonable: our manpower is stretched so thin that all infeasible RFEs are unreasonable expectations of us. As is unfortunately common with open-source projects, there's a major lack of manpower on Enigmail. If you know Javascript and would like to get your hands dirty with Enigmail, why not volunteer over on the Enigmail list? :) ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
Robert J. Hansen wrote: Todd Zullinger wrote: That seems more like not feasible than unreasonable. But the results are the same. :-) Infeasible: we have the manpower, we have the tools, we have the talent, but the architecture is working against us in a big way. Unreasonable: our manpower is stretched so thin that all infeasible RFEs are unreasonable expectations of us. I suppose that's one way to define the terms. I was thinking that unreasonable would be more aptly applied to a request that wasn't grounded in any good reasoning. Not feasible could be applied for either lack of manpower or lack of an available set of hooks to achieve the goal. As is unfortunately common with open-source projects, there's a major lack of manpower on Enigmail. If you know Javascript and would like to get your hands dirty with Enigmail, why not volunteer over on the Enigmail list? :) While I think that the Enigmail team has done a really great job of integrating OpenPGP into Thunderbird[1], I'm a happy Mutt user and not looking to switch back to any graphical MUA. ;-) I sincerely appreciate the efforts of all those folks that create the tools so many of us use, from the kernel hackers working on low level drivers for obscure funtions I will likely never understand, to David, Werner, Timo and all the GnuPG developers/contributors, to Ingo, John, Patrick and others who spend hours integrating those pieces into easy to use graphical interfaces that I can teach a friend to use pretty quickly. [1] For Windows, Thunderbird with Enigmail is the only thing I'd recommend to friends getting started. For linux, it's either Thunderbird/Enigmail or Kmail. Both projects have done a lot to make using PGP both seemless and secure. -- ToddOpenPGP - KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp == The chains of habit are too weak to be felt until they are too strong to be broken -- Samuel Johnson (1709-1784) pgpzF1I6pZfTk.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
encrypt the sent folder
Hi, How can I make sure that all the emails in my Sent folder are encrypted and can't be read without my private key? In other words, I want my email in my Sent folder to be encrypted even though the email sent on the wire is plain text. Encrypt to self option only works if I send an encrypted mail. I couldn't get it to work all the time. here is my gpg.conf: comment no-mangle-dos-filenames keyserver-options auto-key-retrieve verbose include-revoked include-subkeys expert default-recipient-self encrypt-to 0x34697591 default-key 0x34697591 Email client is Thunderbird/Enigmail. Mails are stored on IMAP server if it makes any difference. Thank you. -- Eray ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
Eray Aslan wrote: How can I make sure that all the emails in my Sent folder are encrypted and can't be read without my private key? In other words, I want my email in my Sent folder to be encrypted even though the email sent on the wire is plain text. This is not a task for GnuPG. This is a task for an encrypted file system. On OS X, look into using encrypted home directories (System Preferences--Security). On Windows, I've found TrueCrypt to be a pretty good solution. On Linux, look into cryptoloop. Email client is Thunderbird/Enigmail. Mails are stored on IMAP server if it makes any difference. It does. You need your IMAP server to run the encrypted file system. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
On Tue, December 5, 2006 9:03 pm, Robert J. Hansen wrote: Eray Aslan wrote: How can I make sure that all the emails in my Sent folder are encrypted and can't be read without my private key? In other words, I want my email in my Sent folder to be encrypted even though the email sent on the wire is plain text. This is not a task for GnuPG. This is a task for an encrypted file system. On OS X, look into using encrypted home directories (System Preferences--Security). On Windows, I've found TrueCrypt to be a pretty good solution. On Linux, look into cryptoloop. Surely there must be a better way. These all require admin access to the IMAP server. The software already does what I want some of the time (when I send the recipient encrypted email). I just want it to do it all the time. -- Eray ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 On 05/12/06 20:03, Robert J. Hansen wrote: How can I make sure that all the emails in my Sent folder are encrypted and can't be read without my private key? In other words, I want my email in my Sent folder to be encrypted even though the email sent on the wire is plain text. This is not a task for GnuPG. This is a task for an encrypted file system. Or, better, for an encryption plugin for his MUA. On OS X, look into using encrypted home directories (System Preferences--Security). On Windows, I've found TrueCrypt to be a pretty good solution. On Linux, look into cryptoloop. Email client is Thunderbird/Enigmail. Mails are stored on IMAP server if it makes any difference. It does. You need your IMAP server to run the encrypted file system. This is suitable only if he owns the server or IMAP storage is kept in a directory on which he has rw permissions(e.g.: ~/home/Maildir). - -- Q.E.D. War is Peace Freedom is Slavery Ignorance is Strength ICQ UIN: 301825501 OpenPGP key ID: 0x58D14EB3 Key fingerprint: 00B9 3E17 630F F2A7 FF96 DA6B AEE0 EC27 58D1 4EB3 Check fingerprints before trusting a key! -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6rc1 (GNU/Linux) iD8DBQFFdce7H+Dh0Dl5XacRA/4dAJ9j7M06Q1qJH3p56Pl+eABe3TaM0QCeIHUR wLUDzY1L0dnhTDwSlIvmuRQ= =i8GA -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
Eray Aslan wrote: Surely there must be a better way. These all require admin access to the IMAP server. The software already does what I want some of the time (when I send the recipient encrypted email). I just want it to do it all the time. There isn't. If you want a program that does this, you're going to need to write it yourself. It seems like it could be done in just a couple of hours of Perl. But once you do that, you're going to need to hack on Enigmail/Thunderbird in able to support text searches through encrypted data, then you're going to need to... etc., etc. It's a nontrivial amount of work. Also remember that OpenPGP is a wire protocol. The protocol is not meant for mass storage. Sure, you can use GnuPG to encrypt files, but once you start dealing with large numbers of them you're generally going to be better off using a system that's purpose-built for the task. Like, say, an encrypted filesystem. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
On Tue, Dec 05, 2006 at 02:30:22PM -0600, Robert J. Hansen wrote: Also remember that OpenPGP is a wire protocol. The protocol is not meant for mass storage. Sure, you can use GnuPG to encrypt files, but once you start dealing with large numbers of them you're generally going to be better off using a system that's purpose-built for the task. Like, say, an encrypted filesystem. I must disagree with this. OpenPGP is not solely a wire protocol. There are even parts of the specification that were added mainly for the benefit of mass storage. It's being used in storage in a number of places today. The nice thing about using OpenPGP as an archival primitive is that each encrypted file is its own file and decrypting one does not impact any others. This works well in the context of email, where each mail is its own object. David ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
David Shaw wrote: I must disagree with this. OpenPGP is not solely a wire protocol. I probably should have said 'primarily'. It wasn't my intent to give the impression it was exclusively a wire protocol. The nice thing about using OpenPGP as an archival primitive is that each encrypted file is its own file and decrypting one does not impact any others. This works well in the context of email, where each mail is its own object. In other ways it doesn't work very well, since each email is encrypted separately, requiring complex bignum math for each decryption. Searching through large numbers of emails could potentially be very problematic. Compare this to an encrypted filesystem, which is typically much more performance-friendly. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
On Tue, Dec 05, 2006 at 02:52:56PM -0600, Robert J. Hansen wrote: David Shaw wrote: I must disagree with this. OpenPGP is not solely a wire protocol. I probably should have said 'primarily'. It wasn't my intent to give the impression it was exclusively a wire protocol. The nice thing about using OpenPGP as an archival primitive is that each encrypted file is its own file and decrypting one does not impact any others. This works well in the context of email, where each mail is its own object. In other ways it doesn't work very well, since each email is encrypted separately, requiring complex bignum math for each decryption. Searching through large numbers of emails could potentially be very problematic. Compare this to an encrypted filesystem, which is typically much more performance-friendly. Absolutely. It all depends on what the goal is. Given a compromise, many distinct files can limit the damage done to a subset (or one) of the encrypted files. A compromise of an encrypted filesystem generally compromises the whole filesystem containing all the files. On the other side, as you say, an encrypted filesystem will probably outperform multiple encrypted files. Given the original request (to store encrypted mails on a remote IMAP server), OpenPGP seems like an obvious answer as it works even when the remote IMAP server isn't under the control of the user (which is often the case). OpenPGP (and encrypted filesystems) are two good solutions to two slightly different and overlapping problems. David ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Eray Aslan wrote: Surely there must be a better way. These all require admin access to the IMAP server. The software already does what I want some of the time (when I send the recipient encrypted email). I just want it to do it all the time. This doesn't like an entirely unreasonable feature request to make of Enigmail. Perhaps you'd want to check in with the Enigmail folks to see if the would consider adding such a feature? It has some potential to be useful but it might be icky to implement. Obviously, if you send a message unencrypted but store it encrypted, you won't really have an accurate record of your sent mail. The headers and MIME parts will be different. Some people prefer that what's in their sent mailbox be exactly equal to what was sent. (Pedants. :) I am curious though, what particular threats are you concerned about? That might help shape what options would be best to take. If you don't trust the IMAP server admins, then you should store your mail somewhere you do trust. If you are worried about someone cracking the server and getting at your sent messages then encryption on the server may be sufficient, but would involve either changes to you mail client or some other sort of access to your mailbox on the server. - -- ToddOpenPGP - KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp == Oh, I feel so deliciously white trash! Mommy, I want a mullet! -- Stewie Griffin -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6rc1 (GNU/Linux) iQFDBAEBAgAtBQJFdfoRJhhodHRwOi8vd3d3LnBvYm94LmNvbS9+dG16L3BncC90 bXouYXNjAAoJEEMlk4u+rwzjIIcIAKIcq+3PoQ/WaEZ2MExTp2vimQ/ReNOpu/vB BGYVylEg0yJ2mVRtodexGZ+GCSFxaQYmXqyS+5H93AbY7SlhKByRGkCi5caHOlLQ aED3FL5SL8ANzXDWDDWABt9YL43+Rx/0/PM81X4m5ueLJUyBC0agtlxGWHlgzUha t0ENzdf/DkjSOVxDvovoHcBmBBhwJMPlQvWd50l1MYbyFWamer3BDOZke1rVKS2p 0rDTvrWfMIqDKRR8Isbfj5LRIJ2ln99GdioDnKDvB24uzUFHWmCMSj6usFggqM09 EwX0sNAZoQ6DYqRNbMPiN1le2hACv0YJllatBYLZOPaiR0Zpjoc= =JPs0 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
Todd Zullinger wrote: Eray Aslan wrote: Surely there must be a better way. These all require admin access to the IMAP server. The software already does what I want some of the time (when I send the recipient encrypted email). I just want it to do it all the time. This doesn't like an entirely unreasonable feature request to make of Enigmail. Perhaps you'd want to check in with the Enigmail folks to see if the would consider adding such a feature? It has some potential to be useful but it might be icky to implement. I thought it was a mis-configuration on my part. Obviously, if you send a message unencrypted but store it encrypted, you won't really have an accurate record of your sent mail. The headers and MIME parts will be different. Some people prefer that what's in their sent mailbox be exactly equal to what was sent. (Pedants. :) Fair enough. I am curious though, what particular threats are you concerned about? That might help shape what options would be best to take. If you don't trust the IMAP server admins, then you should store your mail somewhere you do trust. Nope. I am the admin. If you are worried about someone cracking the server and getting at your sent messages then encryption on the server may be sufficient, but would involve either changes to you mail client or some other sort of access to your mailbox on the server. The servers in question already has encryption at the file system level with cryptsetupLUKS for Linux and truecrypt for windows boxes. But the trouble is these do not provide any defense against attacks through the network. They will happily serve the emails thru the network to the appropriate user when asked. FS encryption is only good at boot time. Once the partition is mounted, you can access the data. I can give the end users a smartcard or a usb stick. The objective is to provide a solution so that not even the admin can read the emails (say by changing the password and logging in as the user) unless he/she has the secret key. -- Eray signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users