Skip to main content

sharkey - Link to source

Couldn't the #pgp #encryption in @thunderbird@mastodon.online be set so that a user who has not set up their own pgp key can still send encrypted mails to recipients whose key can be retrieved from the #WKD?

#Thunderbird #privacy

#privacy #encryption #thunderbird #pgp #wkd @Thunderbird: Free Your Inbox
in reply to FediVerseExplorer

Peter Vágner
friendica (DFRN) - Link to source
Peter Vágner
@FediVerseExplorer How do you think @Thunderbird: Free Your Inbox should handle this? Should one time key pair be Generated? I think it would break ability to read replies encrypted to such messages.
@Thunderbird: Free Your Inbox @FediVerseExplorer
in reply to Peter Vágner

modulux
gotosocial - Link to source
modulux
For encryption only (no signing) the sender doesn't need a keypair.
in reply to modulux

Preston Maness ☭
mastodon - Link to source
Preston Maness ☭
True, but #Thunderbird has gone to lengths to try and make sure that #e2ee either works completely, or not at all. I don't think they'd be on board with one-way encryption.
#thunderbird #e2ee
in reply to FediVerseExplorer

modulux
gotosocial - Link to source
modulux
It's risky to allow one-way encryption, since the reply will (likely) quote the email and reveal stuff. Maybe we need Thunderbird to nudge people into enrolling in WKD.
in reply to modulux

FediVerseExplorer
sharkey - Link to source
FediVerseExplorer
I agree. but sometimes it would be very helpful if users could encrypt sensitive information with one-way encryption without having to deal with pgp setup themselves. With WKD of the receiver, this is relatively easy for inexperienced users to accomplish.
in reply to Peter Vágner

FediVerseExplorer
sharkey - Link to source
FediVerseExplorer
For sending a encrypted E-Mail, only the public key of the recipient is necessary, so far I know.
But Thunderbird dosn't allow to activate encryption, if the sender hasn't a key...