RSS

Category Archives: encryption

Email Encryption part 2

As promised here is the second part to Email Encryption. How you set up your mail client to work with GPG will depend on what client you are using. I use (Icedove if you use Debian) so that is the one that I will be covering.
Step 1: Download
First of all Thunderbird does not to my knowledge handle encrypted email so you will need to download an extension called .
Step 2: Install
Now its time to install Enigmail! Go to tools>extensions and click the install button. Find the .xpi you just downloaded click ok. The extension is unsigned so it will ask if you really really want to install it. You will need to restart Thunderbird now.
step 3: Setup

The first thing you will want to do is to give Enigmail the path to GPG, this will differ depending on your system. goto openPGP>preferences. If you followed my earlier instructions for installing GPG it should be located at /usr/local/bin/gpg

now that Enigmail can find GPG we can get started with setting up keys! next you will need to go to OpenPGP>Key Management. A new window will open and now you will need to go to Generate>New Key Pair. All you have to do here is give it a pass phrase (password), tell it which email address you want this key to be associated with and click Generate Key but it is a very good idea to take a look at some of the settings first! the Key is automatically set to expire in 5 years if you don’t like this change it to a period of time you like. The next tab is called advanced don’t get scarred it really isn’t that advanced (if you would like more advanced options I suggest making a key pair from the terminal using the command “gpg –gen-key”) the first option “key size” should be set to as high as you can get it (that should be 4096) the longer the key is the more secure it is. the second option is not that important and can be left alone. here are the settings I’m using. Now that you have everything set up click the Generate Key button. Enigmail will give you an option to make a revocation key if you wish you can d o this but you don’t have to.step 4: Key Servers
Well now you have an email encryption set up but it isn’t very useful if no one has can send you encrypted email. So to fix this you will now need to upload your public key to a key server. go to the OpenPGP>Key Management from there go to Keyserver>Upload Public Keys and chose a server to upload to. I normally will upload my keys to all of them just so that they are easy to find. note that if to go to search for public keys you can find your friends public keys if they have uploaded them. Now we are done with the set up!

step 5: sending an Email
This is the easy part. Just write your email as you normally would and then before you send it click on the OpenPGP icon in the tool bar and select the options that you would like. Now send it! ok were done have a nice day.

Advertisements
 
Leave a comment

Posted by on September 18, 2007 in encryption, thunderbird

 

Email encryption part 1

Edit: If you already have GPG installed then check out the part two.

Unencrypted emails can be read by any server that they happen to pass through. The only way to stop this form being possible is to encrypt the email before you send it. First I’m am going to show you how to install GNUPG and later I will show you how to use your email client to send encrypted emails.

Installing GNUPG on windows

Installation on windows is pretty simple just download the latest binaries(.exe). Then you run the installer and it will install GPG to your program files directory.

Installing GNUPG on Unix-like operating systems

The easiest to install way to install GPG is to use the package manager built into your distrobution, if you have one. alternatively you can download binaries form GNUPG’s site. If you can’t find packages for your system on GNUPG’s website the best way to install is to install form source. If you are using a Mac (like I am) they will direct you to Mac GNUPG. However I would still suggest installing form source (you will need to install the developer tools form your install DVD), that way you know you have the most up-to-date and official packages. note that their are a few package manager for Mac OS X that will have GPG such as Fink, Macports, or Gentoo for Mac OS X.

Step 1: download the source.

Step 2: Untar the file you just downloaded. Open the terminal and go to the directory were you unzipped the files(this is done with the command cd). mine happens to be ~/desktop/gunpg-1.4.7.

Step 3: type “./configure”.

This will give you a stream of text for what seems like forever. Just wait until you are returned to the prompt.

Step 4: Now you need to type “make” this will give you the same kind of flow of text. If you would like you can check to make sure this work by typing “make check”.

step 5: At the next prompt type “sudo make install”. You will be prompted for the administrative password. If you aren’t in the sudoers file you can use su.

You now have GNUPG installed at /usr/local/bin/gpg. For more information on GNUPG see it’s homepage. In part two I will show you have to send encrypted emails.

 
Leave a comment

Posted by on September 17, 2007 in encryption, GNUPG