Re: [Enigmail] What about PGP/Header support?
On 03/17/2014 07:26 AM, Robert J. Hansen wrote: >> or their cell phones to send me messages. And while I have SSL turned >> on with Facebook, I very much doubt that Facebook itself, on their >> servers, keeps my messages encrypted even though they seem to be >> during transmission. > > I know one of Facebook's senior security geeks; if you like, I'd be > happy to ask about this for you. > It would be interesting, but since I assume everything I put on Facebook can be seen by everyone (even though my settings may be more restrictive), it is of no practical importance to me. And I assume that anyone can see this message I am typing too, ... -- .~. Jean-David Beyer Registered Linux User 85642. /V\ PGP-Key:166D840A 0C610C8B Registered Machine 1935521. /( )\ Shrewsbury, New Jerseyhttp://linuxcounter.net ^^-^^ 09:40:01 up 4 days, 18:42, 2 users, load average: 4.12, 4.07, 4.11 ___ enigmail-users mailing list enigmail-users@enigmail.net https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] Using Enigmail for mailing lists
On 03/16/2014 11:46 AM, Boris Month wrote: > me and some friends of mine want to exchange encrypted emails on our > mailing list. Does enigmail support encryption for multiple recepients? > How would you encrypt information on a mailing list? You might be interested in schleuder, which is an encrypted re-mailer that is actively-maintained: http://schleuder2.nadir.org/ You might also be interested in SELS, which isn't currently maintained, but has some interesting (and unusual) cryptographic properties: http://sels.ncsa.illinois.edu/ The enigmail-users mailing list we're using uses mailman, which doesn't support encrypted messages (this is a reasonable choice for a mailing list with public archives anyway). But Abhilash Raj has recently done a large chunk of work to try to get mailman ready to deal with cryptographically signed messages (i regret that i haven't had a chance to review it more closely -- maybe someone else wants to take a look?). If the key management is done sensibly, Abhilash's work should provide a great foundation to be able to have an encrypted mailman installation. --dkg signature.asc Description: OpenPGP digital signature ___ enigmail-users mailing list enigmail-users@enigmail.net https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] enigmail not handling crypted messages
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 16.03.14 23:34, Antoine Polatouche wrote: > Hi, > > I'm using enigmail 1.6 (20131006-1849) with thunderbird 24.3.0 on > a ubuntu 12.10 32 bit. > > When a crypted mail is coming, I can see it as a simple text > message, as you can see it when enigmail is not used. There is no > log in the debug log file. At this time I can't decrypt old > messages anymore. > > To decrypt the message I have to close then reopen thunderbird. > The messages are showing decrypted normally. > > Any clue? Maybe GnuPG is blocking? Check if there is a hidden file in ~/.gnupg or if another gpg process is running if decryption does not work. - -Patrick -BEGIN PGP SIGNATURE- Version: GnuPG/MacGPG2 v2.0.22 (Darwin) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEVAwUBUybqnsk25cDiHiw+AQhjSwgAoeMo1Zpnj1HXUH0PIle+87hVws2uR1RI bI2dp6tXDQ9j2C5vHEBiPlTvmx8ybjiSgSndsQa4Kp1w3vuqtPtJY85cl9+fwRYY k5fx23kkuhlpbLc1iexmDA8muWCssipHJ2hzkqY2l1x7nn6ou1xuDeYG/0IdI82A phEaf9rrrqPrJZM09mZ0mfaFZZnOmbn5b5Pu+nl8zShv2+X5DyWVCmPzs1vDs+WO 46y+4WidCgUdmC53r5l0xSWgD95MM6SSfszzMKe83KtID/0lTs6rNQ/sCsrKoznE tfY4f5TTworiXClpfGwu5YrLgEbaN5WhNgplljehEBCX3BoAaG/a/w== =7JLs -END PGP SIGNATURE- ___ enigmail-users mailing list enigmail-users@enigmail.net https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] What about PGP/Header support?
> or their cell phones to send me messages. And while I have SSL turned > on with Facebook, I very much doubt that Facebook itself, on their > servers, keeps my messages encrypted even though they seem to be > during transmission. I know one of Facebook's senior security geeks; if you like, I'd be happy to ask about this for you. ___ enigmail-users mailing list enigmail-users@enigmail.net https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] What about PGP/Header support?
On 03/17/2014 12:08 PM, Jean-David Beyer wrote: > On 03/17/2014 06:16 AM, Anne Wilson wrote: > > On 16/03/2014 12:21, Jean-David Beyer wrote: > >> On 03/15/2014 02:28 PM, Egbert van der Wal wrote: > >>> I actually see encryption as less of an issue. When I send an > >>> encrypted message to someone, I need to know for sure that the > >>> recipient knows about PGP encryption and knows how to decode > >>> it. If I send an encrypted message to someone who does not use > >>> PGP, he/she cannot read it, no matter what. > > >> How do you send an encrypted message to someone who does not use > >> PGP? You need his public key to do that. > > > I think that is the point that he was making - his reason for > > thinking that encryption is a lesser issue. > > > Anne > > When his sentence starts out "If I send an encrypted message to > someone who does not use PGP, ..." he is already lacking understanding > since he CANNOT send an encrypted message to someone using enigmail if > he does not have that someone's public key. > > And if that someone does not use enigmail (or something very much like > it), he better not send that message at all (if it really needed to be > encrypted). I do understand the procedure of PGP encryption. And I explained in my previous mail that it is no problem to send an encrypted mail to someone even if I do not have their public key. It's just extremely unlikely that they'll be able to decrypt it, since I'd be using a different public key. I could just as well enable encryption for this particular message and select the PGP key of my colleage. You will not be able to read it, but it will be encrypted. This is all extremely beside the point I was trying to make. My point is that when I'm sending an encrypted mail, I must be certain that the person I'm sending it to knows what it is and is actually using PGP because otherwise they cannot decrypt the message. Therefore, for the type of person that I would send encrypted mails, it is no issue how and where any key or signature is transfered because I can assume that the recipient has a mailclient that knows what do do with this. However, when I do not encrypt a message, but simply sign it, I cannot make such an assumption. That is the point I was trying to make. Regards, Egbert signature.asc Description: OpenPGP digital signature ___ enigmail-users mailing list enigmail-users@enigmail.net https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] What about PGP/Header support?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 03/17/2014 06:16 AM, Anne Wilson wrote: > On 16/03/2014 12:21, Jean-David Beyer wrote: >> On 03/15/2014 02:28 PM, Egbert van der Wal wrote: >>> I actually see encryption as less of an issue. When I send an >>> encrypted message to someone, I need to know for sure that the >>> recipient knows about PGP encryption and knows how to decode >>> it. If I send an encrypted message to someone who does not use >>> PGP, he/she cannot read it, no matter what. > >> How do you send an encrypted message to someone who does not use >> PGP? You need his public key to do that. > > I think that is the point that he was making - his reason for > thinking that encryption is a lesser issue. > > Anne When his sentence starts out "If I send an encrypted message to someone who does not use PGP, ..." he is already lacking understanding since he CANNOT send an encrypted message to someone using enigmail if he does not have that someone's public key. And if that someone does not use enigmail (or something very much like it), he better not send that message at all (if it really needed to be encrypted). I never benefit from enigmail because I cannot get any of my correspondents to use it at all. In fact, many of them prefer Facebook or their cell phones to send me messages. And while I have SSL turned on with Facebook, I very much doubt that Facebook itself, on their servers, keeps my messages encrypted even though they seem to be during transmission. My impression is that with all the hand-wringing about the NSA and other agencies snooping on Internet communication, most people, or at least most of my friends, do not actually care about Internet privacy. Even with gnupg and enigmail, the headers are all exposed, but that is another story. - -- .~. Jean-David Beyer Registered Linux User 85642. /V\ PGP-Key:166D840A 0C610C8B Registered Machine 1935521. /( )\ Shrewsbury, New Jerseyhttp://linuxcounter.net ^^-^^ 07:00:01 up 4 days, 16:02, 2 users, load average: 4.20, 4.22, 4.46 -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.14 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBAgAGBQJTJtePAAoJEBZthAoMYQyLCQ4H/33LaqWjahiEzPCTwBND11+m trwV+nuOIK8x/oSpIDzEJnHWm6AbIGsotju2bjRdnlkIKYdmBJLU4X79vUcNPzRR YE3wyUxSkwFHdPnIm0YXGpZbUe/lVT9B2yoqIQyS4vyCIQu3vu4e5XbJB7AOjiOf Ni1n3OWiEhLe0/PZHE7iakpfJPLzaA+jvrOOhcdtCUWEJoe5ioGCZ/fiifxlNktz 8U1xZZJhqztO7qsM+TkHVFosp7+wcEgQWE53tlA5o8gvM21VhTi5yZg7GRhOGFTd uzJvnELydTePRaht8LJdVJru+cSdIHALCFfYc4rqcLhHtRM4xkB6u/cRHv35QdY= =gHjd -END PGP SIGNATURE- ___ enigmail-users mailing list enigmail-users@enigmail.net https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] What about PGP/Header support?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 16/03/2014 12:21, Jean-David Beyer wrote: > On 03/15/2014 02:28 PM, Egbert van der Wal wrote: >> I actually see encryption as less of an issue. When I send an >> encrypted message to someone, I need to know for sure that the >> recipient knows about PGP encryption and knows how to decode it. >> If I send an encrypted message to someone who does not use PGP, >> he/she cannot read it, no matter what. > > How do you send an encrypted message to someone who does not use > PGP? You need his public key to do that. > I think that is the point that he was making - his reason for thinking that encryption is a lesser issue. Anne -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.15 (MingW32) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlMmy28ACgkQj93fyh4cnBf5UwCfRG3ZvZE284lvqbFHOp58Qlak 4nIAn0AvB5SAhgXeGNFmxA3xZ/7fpm70 =tUD1 -END PGP SIGNATURE- ___ enigmail-users mailing list enigmail-users@enigmail.net https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net