A background case first.
Years ago a Debian project leader sent one of those common public
"Bits from the DPL" messages and signed the message with his OpenPGP
key. I replied to the message because I wanted to give some
feedback. I _encrypted_ my mail. The said Debian project leader
replied, quoted my message and send his reply to me _unencrypted_.
No big harm in that case but if a technical person like Debian
project leader can fail (to respect) encryption then anyone can and
the whole email encryption idea is doomed or restricted to really
known trusted parties.
It can be difficult to keep emails secret because recipients and their
email clients can do anything with encrypted messages they receive.
I would like to gather some general information and your experience how
email clients behave by default when you press REPLY button for an
encrypted mail. Just a general picture and your experience.
If REPLY buttons are not safe (that is, defaulting to encrypted replies
for encrypted mail) it is probably better to encrypt a text file
manually and attach the encrypted file. It forces the recipient to go
outside the mail client and decrypt the attachment manually. It breaks
the normal habit and quick thoughtless replies.
--
/// Teemu Likonen - .-.. https://www.iki.fi/tlikonen/
// OpenPGP: 6965F03973F0D4CA22B9410F0F2CAE0E07608462
Attachment:
signature.asc
Description: PGP signature