Re: How do you manage encrypted mail?

To: Richard Lawrence <richard.lawrence@berkeley.edu>
Cc: debian-user@lists.debian.org
Subject: Re: How do you manage encrypted mail?
From: Rob Owens <rowens@ptd.net>
Date: Tue, 2 Jul 2013 15:18:54 -0400 (EDT)
Message-id: <[🔎] 1233394087.42268205.1372792734521.JavaMail.root@ptd.net>
Reply-to: rowens@ptd.net
In-reply-to: <[🔎] 87obakdgjc.fsf@berkeley.edu>

----- Original Message -----
> From: "Richard Lawrence" <richard.lawrence@berkeley.edu>
> 
> Joey Hess <joeyh@debian.org> writes:
> 
> > Richard Lawrence wrote:
> >> I've recently (re-)decided to make an effort to use PGP, and to
> >> convince
> >> others to use it too. (My effort to do so:
> >> http://www.ocf.berkeley.edu/~rwl/encryption.html, linked from my
> >> .signature.  Comments welcome.) But I've run into a couple of
> >> problems
> >> fairly quickly. If you use PGP regularly, how do you solve them?
> >> 
> >> 1) Reading encrypted mail that I sent...
> >
> > Typically, gpg is configured to encrypt mail to multiple
> > recipients,
> > which includes everyone the mail is sent to, as well as the sender.
> >
> > For example, I have in my gpg.conf:
> >
> > # Encrypt stuff to my key too.
> > encrypt-to 2512E3C7
> >
> 
> Ah, this is what I was missing.  Thanks!
> 
> >> 2) Search. The more serious issue is that I can't search encrypted
> >> email, whether I sent it or received it...
> >
> > Mutt will use gpg to decrypt encrypted mail when searching in the
> > body
> > (ie, when limiting to ~bsomething). It can get slow, indeed.
> 
> Good to know, thanks.  When I try this, Mutt asks me to enter my GPG
> passphrase for every encrypted message in the folder I'm limiting,
> though!  (So it's not a good option for my "sent" folder, for
> example.)
> Any way to avoid that?
> 
On my system, Mutt doesn't re-ask me for my GPG passphrase until some
timeout has been reached.  5 minutes, I think.  I didn't set it like 
that.  It was the default.  I'm not sure if that's a Mutt setting or a
GPG setting.

Icedove/Thunderbird has the Enigmail extension to handle encryption.  
You might want to give that a try as well, particularly since you are
trying to encourage others to use encryption and Thunderbird is available
for both Linux and Windows (and Mac?).

In my experience, email encryption is has been pretty easy with the
exception of getting it to work with webmail.  The other tricky thing is
getting people to understand the concepts of how/why to trust a key -- 
things like verifying the fingerprint, etc.

-Rob

Reply to:

Follow-Ups:
- Re: How do you manage encrypted mail?
  - From: Richard Lawrence <richard.lawrence@berkeley.edu>
- Re: How do you manage encrypted mail?
  - From: Rob Owens <rowens@ptd.net>
- Re: How do you manage encrypted mail?
  - From: Rob Owens <rowens@ptd.net>
- Re: How do you manage encrypted mail?
  - From: Andrei POPESCU <andreimpopescu@gmail.com>

References:
- Re: How do you manage encrypted mail?
  - From: Richard Lawrence <richard.lawrence@berkeley.edu>

Prev by Date: USB printer requires unplugging every time with CUPS‏
Next by Date: Re: SANE - trying to get an LIDE 110 working in Debian Squeeze.
Previous by thread: Re: How do you manage encrypted mail?
Next by thread: Re: How do you manage encrypted mail?
Index(es):
- Date
- Thread