On 30/03/2015 8:28 am, Mike Ingle wrote:
>
>> Why should the user need to delete one, rather than just be told
>> there were two and the one with such-and-such a fingerprint (or the
>> one highlighted) signed this message? If it is just a string in a
>> key UID rather than a functional email addres
On 24/03/2015 2:27 pm, Mike Ingle wrote:
> There has been some discussion on gnupg-users about replacing SMTP for
> secure email, and how BitMessage does not scale.
>
> There is an open source non-SMTP email system called Confidant Mail,
> which is based on GnuPG and hash table storage. The protoc
> Any word on whether confidant mail will support the openpgp smart
cards (or
> yubikey, similar)? -Nick
With GPG 2.1, the gpg-agent handles all the passphrase prompting. I
don't see
why it would not work with a smartcard. Which one do you think I should
get to
test with? I have not played w
Any word on whether confidant mail will support the openpgp smart cards (or
yubikey, similar)?
-Nick
On Mar 29, 2015 7:55 AM, "MFPA" <2014-667rhzu3dc-lists-gro...@riseup.net>
wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA512
>
>
>
> On Saturday 28 March 2015 at 6:05:05 PM, in
> , Peter Le
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On Saturday 28 March 2015 at 6:05:05 PM, in
, Peter Lebbing wrote:
> No, but nobody said the adjective was used
> tautological.
Maybe it doesn't imply or hint that to everybody, but it is definitely
what I infer when I read "from strictly busine
On 28/03/15 15:59, MFPA wrote:
> Using "darknet" services to enhance privacy does not equate to
> "dodgy".
No, but nobody said the adjective was used tautological.
It's like someone says "they're doing shady business in a dark alley"
and you protest "Hey, I know plenty proper businesses that are
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Thursday 26 March 2015 at 11:57:43 PM, in
, Mike Ingle wrote:
> That's more or less what it does. When you get an email
> from j...@somewhere.com, it fetches that key id and
> adds it to your keyring. If you get an email from a
> differen
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Thursday 26 March 2015 at 9:26:35 PM, in
, Mike Ingle wrote:
> Yes, the email address is just an identifier. The
> address is used in two ways. One, it is hashed with
> SHA1 and used to look up the user's key id.
I'm in favour of hashing
At present, there is no key verification built in and
you have to check the key fingerprint (which is always
shown to the right of the address) or check a signature
chain on your key using a GPG key manager.
Or you can Trust On First Use, if it suits your threat model.
That's more or
> From the bit of testing I did with it, it seems the "email address" is
> merely used as a user identifier. The domain is irrelevant. You could
> use nob...@nonexistent-domain.com and it would still work. The email
> address doesn't actually have to exist.
>
> I don't think it does since the emai
On 3/26/2015 4:27 PM, MFPA wrote:
> Hi
>
>
> On Tuesday 24 March 2015 at 3:27:47 AM, in
> , Mike Ingle wrote:
>
>> More
>> information and downloads at:
>> https://www.confidantmail.org
>
> The intro page on your website says "SMTP-compatible address format:
> keep your existing email address".
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Tuesday 24 March 2015 at 3:27:47 AM, in
, Mike Ingle wrote:
> More
> information and downloads at:
> https://www.confidantmail.org
The intro page on your website says "SMTP-compatible address format:
keep your existing email address". Have
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Tuesday 24 March 2015 at 10:55:04 PM, in
, Mike Ingle wrote:
> The user interface has to do a lot of things
> differently from SMTP MUAs - display signatures, check for keys,
SMTP MUAs that interface with PGP or GnuPG (or use S/MIME) disp
Notwithstanding the security compromise from building SMTP gateways,
some people are pretty attached to their favourite MUA. Have you any
thoughts about accommodating them by enabling your Confidant Mail
client or server to function as a local email proxy?
The user interface has to do a lot of
On 3/23/15 8:27 PM, Mike Ingle wrote:
There has been some discussion on gnupg-users about replacing SMTP for
secure email, and how BitMessage does not scale.
You can use Jabber for secure messaging. Haven't tested it with OTR, but
I imagine if the client could do it, it would work.
Doug
--
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Tuesday 24 March 2015 at 3:27:47 AM, in
, Mike Ingle wrote:
> The client is available for Windows, Linux and MacOS.
> You can run your own server, or get an account on the
> test environment to try it out immediately. More
> information
On 3/23/2015 11:27 PM, Mike Ingle wrote:
> There has been some discussion on gnupg-users about replacing SMTP for
> secure email, and how BitMessage does not scale.
>
> There is an open source non-SMTP email system called Confidant Mail,
> which is based on GnuPG and hash table storage. The protoc
17 matches
Mail list logo
