Re: [Debian-br] Mutt não está criptografando e-mails, gmail reclama.

[Henrique Fagundes <suporte@aprendendolinux.com>]

Oi Gilberto,

Mais uma vez, obrigado.

Eu vou fazer testes com essas configurações, mas gostaria mesmo era de entender o processo.

Gerar as chaves/senhas e enviar o e-mail criptografado.

Estarei enviando os resultados dos meus testes em breve.

Atenciosamente,

Henrique Fagundes

---- On Seg, 08 abr 2019 08:34:36 -0300 Gilberto F da Silva <2458099@gmail.com> wrote ----

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

On Mon, Apr 08, 2019 at 08:14:49AM -0300, Henrique Fagundes wrote:

> Gilberto, bom dia!

>

> Primeiramente, obrigado por responder.

>

> Se for o caso, que eu tenha que digitar a senha na mão, como eu faria para

> enviar o e-mail com a criptografia? Poderia ensinar os procedimentos?

No meu .muttrc tem as seguintes linhas:

source ~/.mutt/mutt-colors-trans-green

source ~/.mutt/mutt-gnupgrc

source ~/.mutt/mailboxes

source ~/.mutt/aliases

source ~/.mutt/gpg.rc

Arquivo mutt-gnupgrc

# __ _ ___ ___ ___

# __ _ / _|___/ |/ _ \ ( _ )/ _ \

# / _` | |_/ __| | (_) |/ _ \ (_) |

# | (_| | _\__ \ |\__, | (_) \__, |

# \__, |_| |___/_| /_/ \___/ /_/

# |___/

# +-----------------------------------+

# ! gfs1989@gmx.net !

# +--------------+--------------------+

# ! Arquivo ! mutt-gnupgrc !

# +--------------+--------------------+

# ! Data Estelar ! 2.453.928 !

# +--------------+--------------------+

#

set pgp_create_traditional=yes

set pgp_decode_command="gpg %?p?--passphrase-fd 0? --no-verbose --batch --output - %f"

set pgp_verify_command="gpg --no-verbose --batch --output - --verify %s %f"

set pgp_decrypt_command="gpg --passphrase-fd 0 --no-verbose --batch --output - %f"

set pgp_sign_command="gpg --no-verbose --batch --output - --passphrase-fd 0 --armor --detach-sign --textmode %?a?-u %a? %f"

set pgp_clearsign_command="gpg --no-verbose --batch --output - --passphrase-fd 0 --armor --textmode --clearsign %?a?-u %a? %f"

set pgp_encrypt_only_command="pgpewrap gpg --batch --quiet --no-verbose --output - --encrypt --textmode --armor --always-trust --encrypt-to 0xD3211B0E -- -r %r -- %f"

set pgp_encrypt_sign_command="pgpewrap gpg --passphrase-fd 0 --batch --quiet --no-verbose --textmode --output - --encrypt --sign %?a?-u %a? --armor --always-trust --encrypt-to 0x73AB3459 -- -r %r -- %f"

set pgp_import_command="gpg --no-verbose --import -v %f"

set pgp_export_command="gpg --no-verbose --export --armor %r"

set pgp_verify_key_command="gpg --no-verbose --batch --fingerprint --check-sigs %r"

set pgp_list_pubring_command="gpg --no-verbose --batch --with-colons --list-keys %r"

set pgp_list_secring_command="gpg --no-verbose --batch --with-colons --list-secret-keys %r"

set pgp_autosign=yes

set pgp_sign_as=0xD3211B0E

set pgp_replyencrypt=yes

set pgp_timeout=1800

set pgp_good_sign="^gpg: Boa assinatura de "

arquivo gpg.rc

# -*-muttrc-*-

#

# Command formats for gpg.

#

# Some of the older commented-out versions of the commands use gpg-2comp from:

# http://70t.de/download/gpg-2comp.tar.gz

#

# %p The empty string when no passphrase is needed,

# the string "PGPPASSFD=0" if one is needed.

#

# This is mostly used in conditional % sequences.

#

# %f Most PGP commands operate on a single file or a file

# containing a message. %f expands to this file's name.

#

# %s When verifying signatures, there is another temporary file

# containing the detached signature. %s expands to this

# file's name.

#

# %a In "signing" contexts, this expands to the value of the

# configuration variable $pgp_sign_as, if set, otherwise

# $pgp_default_key. You probably need to

# use this within a conditional % sequence.

#

# %r In many contexts, mutt passes key IDs to pgp. %r expands to

# a list of key IDs.

# Section A: Key Management

# The default key for encryption (used by $pgp_self_encrypt and

# $postpone_encrypt).

#

# It will also be used for signing unless $pgp_sign_as is set to a

# key.

#

# Unless your key does not have encryption capability, uncomment this

# line and replace the keyid with your own.

#

set pgp_default_key="0xD3211B0E"

# If you have a separate signing key, or your key _only_ has signing

# capability, uncomment this line and replace the keyid with your

# signing keyid.

#

set pgp_sign_as="0xD3211B0E"

# Section B: Commands

# Note that we explicitly set the comment armor header since GnuPG, when used

# in some localiaztion environments, generates 8bit data in that header, thereby

# breaking PGP/MIME.

# decode application/pgp

set pgp_decode_command="gpg --status-fd=2 %?p?--passphrase-fd 0? --no-verbose --quiet --batch --output - %f"

# verify a pgp/mime signature

set pgp_verify_command="gpg --status-fd=2 --no-verbose --quiet --batch --output - --verify %s %f"

# decrypt a pgp/mime attachment

set pgp_decrypt_command="gpg --status-fd=2 %?p?--passphrase-fd 0? --no-verbose --quiet --batch --output - %f"

# create a pgp/mime signed attachment

# set pgp_sign_command="gpg-2comp --comment '' --no-verbose --batch --output - %?p?--passphrase-fd 0? --armor --detach-sign --textmode %?a?-u %a? %f"

set pgp_sign_command="gpg --no-verbose --batch --quiet --output - %?p?--passphrase-fd 0? --armor --detach-sign --textmode %?a?-u %a? %f"

# create a application/pgp signed (old-style) message

# set pgp_clearsign_command="gpg-2comp --comment '' --no-verbose --batch --output - %?p?--passphrase-fd 0? --armor --textmode --clearsign %?a?-u %a? %f"

set pgp_clearsign_command="gpg --no-verbose --batch --quiet --output - %?p?--passphrase-fd 0? --armor --textmode --clearsign %?a?-u %a? %f"

# create a pgp/mime encrypted attachment

# set pgp_encrypt_only_command="pgpewrap gpg-2comp -v --batch --output - --encrypt --textmode --armor --always-trust -- -r %r -- %f"

set pgp_encrypt_only_command="pgpewrap gpg --batch --quiet --no-verbose --output - --encrypt --textmode --armor --always-trust -- -r %r -- %f"

# create a pgp/mime encrypted and signed attachment

# set pgp_encrypt_sign_command="pgpewrap gpg-2comp %?p?--passphrase-fd 0? -v --batch --output - --encrypt --sign %?a?-u %a? --armor --always-trust -- -r %r -- %f"

set pgp_encrypt_sign_command="pgpewrap gpg %?p?--passphrase-fd 0? --batch --quiet --no-verbose --textmode --output - --encrypt --sign %?a?-u %a? --armor --always-trust -- -r %r -- %f"

# import a key into the public key ring

set pgp_import_command="gpg --no-verbose --import %f"

# export a key from the public key ring

set pgp_export_command="gpg --no-verbose --export --armor %r"

# verify a key

set pgp_verify_key_command="gpg --verbose --batch --fingerprint --check-sigs %r"

# read in the public key ring

set pgp_list_pubring_command="gpg --no-verbose --batch --quiet --with-colons --with-fingerprint --with-fingerprint --list-keys %r"

# read in the secret key ring

set pgp_list_secring_command="gpg --no-verbose --batch --quiet --with-colons --with-fingerprint --with-fingerprint --list-secret-keys %r"

# fetch keys

# set pgp_getkeys_command="pkspxycwrap %r"

# pattern for good signature - may need to be adapted to locale!

set pgp_good_sign="^gpgv?: Boa assinatura de "

# OK, here's a version which uses gnupg's message catalog:

set pgp_good_sign="`gettext -d gnupg -s 'Boa assinatura de "' | tr -d '"'`"

# This version uses --status-fd messages

set pgp_good_sign="^\\[GNUPG:\\] GOODSIG"

# pattern to verify a decryption occurred

# This is now deprecated by pgp_check_gpg_decrypt_status_fd:

# set pgp_decryption_okay="^\\[GNUPG:\\] DECRYPTION_OKAY"

set pgp_check_gpg_decrypt_status_fd

Conteúdo do Arquivo Recepção

# __ _ ___ ___ ___

# __ _ / _|___/ |/ _ \ ( _ )/ _ \

# / _` | |_/ __| | (_) |/ _ \ (_) |

# | (_| | _\__ \ |\__, | (_) \__, |

# \__, |_| |___/_| /_/ \___/ /_/

# |___/

# +-----------------------------------+

# ! gfs1989@gmx.net !

# +--------------+--------------------+

# ! Arquivo ! Recepcao !

# +--------------+--------------------+

# ! Data Estelar ! 2.453.928 !

# +--------------+--------------------+

#

# -*- muttrc -*-

#

# Perfil para o Mutt

#

# Mutt sender profile: Recepcao

# Signature file

set signature='~/scripts/comfrases.sh|'

# Customized headers

set from = "Gilberto F da Silva<gfs1989@mandic.com.br>"

set envelope_from=yes

# Include the profile name in the status line

set status_format="--%f [Msgs:%?M?%M/?%m%?n? New:%n?%?o? Old:%o?%?d? Del:%d?%?F? Flag:%F?%?t? Tag:%t?%?p? Post:%p?%?b? Inc:%b? %?l? %l?]---(%s/%S)--%>-(%P)--gfs1989@gmx.net-"

#Habilita o GnuPG

set pgp_autosign=yes

set pgp_replyencrypt=yes

# Editor para esse perfil

set editor ="emacs --funcall mutt-mode +8 %s"

- --

Gilberto F da Silva - gfs1989@gmx.net - ICQ 136.782.571

Stela dato:2.458.581,974 Loka tempo:2019-04-08 08:22:51 Lundo

- -==-

Se não é verdade, pelo menos foi uma boa invenção.

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1

Comment: +-----------------------------------------------------+

Comment: ! Gilberto F da Silva - ICQ 136.782.571 !

Comment: +-----------------------------------------------------+

iEYEARECAAYFAlyrMcwACgkQJxugWtMhGw6HhACdGxFHbRLtpvquzqKy0RAbRqNu

fc0Anir65Dl6l9NrrqaUu4QT1gc+7BkD

=kBJ5

-----END PGP SIGNATURE-----