Changes between Version 4 and Version 5 of faq/email/openpgp


Ignore:
Timestamp:
Jan 4, 2019, 12:04:50 PM (3 weeks ago)
Author:
https://id.mayfirst.org/jamie
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • faq/email/openpgp

    v4 v5  
    5858 * Web of trust. An important concept not covered here is: how do you get other people's public keys? OpenPGP uses a decentralized model of trust called [WikiPedia:Web_of_trust web of trust].
    5959
    60  * Transactional data. GnuPG only encrypts the ''body'' of your email message - not the headers. Therefore, when sending email, your email address, the date of the message, the recipient and other information regarding the transport of your message may be sent in the clear. One solution to that problem is to only work with providers that use [http://help.riseup.net/security/measures/#use_secure_email_providers providers that support starttls] (note: May First/People Link, despite not being included in the list, does use starttls).
     60 * Transactional data. GnuPG only encrypts the ''body'' of your email message - not the headers. Therefore, when sending email, your email address, the date of the message, the recipient and other information regarding the transport of your message may be sent in the clear. One solution to that problem is to only work with providers that use [https://riseup.net/en/security/resources/radical-servers that support starttls] (note: May First/People Link, despite not being included in the list, does use starttls).
    6161
    6262 * Verifying fingerprints. When exchanging public keys, it's important to verify the fingerprints of the keys you are exchanging.