PGP & GPG: Email for the Practical Paranoid
Michael W Lucas
Format: PDF / Kindle (mobi) / ePub
OpenPGP is the most widely used email encryption standard in the world. It is based on PGP (Pretty Good Privacy) as originally developed by Phil Zimmermann. The OpenPGP protocol defines standard formats for encrypted messages, signatures, and certificates for exchanging public keys.
PGP & GPG is an easy-to read, informal tutorial for implementing electronic privacy on the cheap using the standard tools of the email privacy field - commercial PGP and non-commercial GnuPG (GPG). The book shows how to integrate these OpenPGP implementations into the most common email clients and how to use PGP and GPG in daily email correspondence to both send and receive encrypted email.
The PGP & GPG book is written for the moderately skilled computer user who is unfamiliar with public key cryptography but who is nevertheless interested in guarding their email privacy. Lucas's trademark informal and relaxed tone makes public key cryptography as simple and clear as possible, so that any reasonably savvy computer user can understand it.
comment is just a few words about who you are and what you do. This can be important because many people have similar names. If I perform a Google search for “Michael Lucas” I ﬁnd a whole bunch of interesting characters: voiceover artists, actors, ﬁrearm instructors, ministers, and so on. Although I wish them all well, I don’t want anyone to try to negotiate my book contract with them (because my publisher is such a bastard, he’ll take them for all they’re worth). The comment ﬁeld allows me to
if you’re a new user or if you want to import previous PGP keys. Select New User, and PGP will begin the key generation process. The ﬁrst screen of the PGP Setup Assistant requests your full name and your primary email address, as shown in Figure 3-2. Figure 3-2: The Name and Email Assignment screen The More button and the Advanced button are important. If you have more than one email account that you want to secure with PGP, select More to create more space to list email addresses. If you’re
creation date. The key’s UID is given on its own line, with any subkeys of the main OpenPGP key listed afterward. (Subkeys are keypairs that are subordinate to the main OpenPGP key, and many people highly skilled with OpenPGP have them on their keys. You generally don’t have to worry about these subkeys, but don’t be concerned when they appear.) To view the keys on your private keyring, use the --listsecret-keys option. # gpg --list-secret-keys /home/mwlucas/.gnupg/secring.gpg
line, see Appendix B. This is a lot of trouble to possibly read a PGP/MIME message, isn’t it? This sort of thing is why using a different mail client (such as Thunderbird) is highly recommended, at least until the GnuPG folks ﬁgure out how to do PGP/MIME without all the pieces they currently need.1 1 They’ll get there, I’m sure of it. With my luck, it’ll be about two weeks after this book hits the shelves. 146 Chapter 10 Thunderbird and GnuPG Thunderbird is the email component of the Mozilla
directory, which is in the user’s application data directory (usually C: \ Documents and Settings\username \ Application Data\ Thunderbird). You’ll ﬁnd a Proﬁles directory here. In that directory, you’ll ﬁnd a directory with a name made of eight random characters and a .default extension. This is where Enigmail stores its information. After uninstalling Enigmail, but before upgrading Thunderbird, delete the following from your proﬁle directory: • XUL.mﬂ • Everything in the chrome directory