[Enigmail] Enigmail, PGP, Gmail and decryption
Robert Ryan
rbrtryn at gmail.com
Thu Aug 21 08:51:50 PDT 2008
On 8/21/2008 9:32 AM, Giano wrote:
>> The original poster has either added an encrypt-to-self in his gpg.conf
>> file, or has told Enigmail to do the same.
>> The mail in the Sent folder is encrypted with _two_ public keys, not
>> just one.
> And if it is encrypted with 2 keys, why can I read it? Is it sufficient
> to have one out of 2 keys?!?!?
Each message is encrypted once with a one-time-use symmetric key. That
symmetric key is then encrypted to each of the recipients public keys
and sent along with the message.
In this case the symmetric key was encrypted *two separate times*. It
was encrypted to your girlfriend's public key and attached to the
message. Then it was encrypted to *your* public key and attached to the
message. This is because you have 'Encrypt to Self' turned on (it is on
by default).
Each of the corresponding secret keys can decrypt the message.
--
Robert Ryan
I prefer encrypted, signed email :)
My PGP keys: http://tinyurl.com/5snkgq
===================================
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 550 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080821/fa0ca64d/attachment-0001.bin>
More information about the Enigmail
mailing list