From ach68 at cam.ac.uk  Tue Sep  2 05:54:21 2008
From: ach68 at cam.ac.uk (Alexander Hermes)
Date: Tue, 02 Sep 2008 14:54:21 +0200
Subject: [Enigmail] Testing Signing
Message-ID: <48BD377D.8030706@cam.ac.uk>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Dear List,

I do hope I do not intrude too much but I am a new enigmail user and I
am testing whether or not I can successfully sign an email...

Yours,

Alexander
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAki9N30ACgkQb0TAMU1AkIHTRACeJKhBLpZ0sfT6coSqx0UTUo8J
mPkAoK9f6AQn7Suc/0qVWnMwrpCTn+di
=zvuO
-----END PGP SIGNATURE-----

From bjtasker at btasker.me.uk  Tue Sep  2 09:15:26 2008
From: bjtasker at btasker.me.uk (Bernard Tasker)
Date: Tue, 02 Sep 2008 17:15:26 +0100
Subject: [Enigmail] Testing Signing
In-Reply-To: <48BD377D.8030706@cam.ac.uk>
References: <48BD377D.8030706@cam.ac.uk>
Message-ID: <48BD669E.4070503@btasker.me.uk>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Alexander Hermes wrote:
> Dear List,
> 
> I do hope I do not intrude too much but I am a new enigmail user and I
> am testing whether or not I can successfully sign an email...
> 
> Yours,
> 
> Alexander

You have been successful, as per:

OpenPGP Security Info

UNTRUSTED Good signature from Alexander Hermes (email) <ach68 at cam.ac.uk>
Key ID: 0x4D409081 / Signed on: 02/09/2008 13:54
Key fingerprint: 9FE4 A2AC 8F3F 8955 AAE8 8E3A 6F44 C031 4D40 9081

Please feel free to send me an encrypted message, off list, if you wish

Bernard
Timestamp: Tuesday 02 September 2008, 05:14 pm  GMT Daylight Time (+0100)
_______________________________________________
Enigmail mailing list
Enigmail at mozdev.org
https://www.mozdev.org/mailman/listinfo/enigmail

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAki9Zp4ACgkQqPQ3uX5O/PcmhQCfeBjuMewHEbyPTXSWTtirLKRg
9uEAoIPAGR4/rTum3qRv2i04CaehqFGT
=QF7j
-----END PGP SIGNATURE-----


From wcollignon at gmail.com  Tue Sep  2 10:00:42 2008
From: wcollignon at gmail.com (Bill Collignon)
Date: Tue, 02 Sep 2008 13:00:42 -0400
Subject: [Enigmail] Testing Signing
In-Reply-To: <48BD377D.8030706@cam.ac.uk>
References: <48BD377D.8030706@cam.ac.uk>
Message-ID: <48BD713A.3040606@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Received o.k.  I hope you receive o.k. as well.

Alexander Hermes wrote:
> Dear List,
> 
> I do hope I do not intrude too much but I am a new enigmail user and I
> am testing whether or not I can successfully sign an email...
> 
> Yours,
> 
> Alexander
_______________________________________________
Enigmail mailing list
Enigmail at mozdev.org
https://www.mozdev.org/mailman/listinfo/enigmail
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAki9cToACgkQzLk7dEIRtMkAOACguFnwXj2TT/uGpfzgEIoc4+8H
2mMAoKLv5YKKNy4Rp7nFYxbEU6jDcOye
=utDC
-----END PGP SIGNATURE-----

From faramir.cl at gmail.com  Tue Sep  2 11:43:54 2008
From: faramir.cl at gmail.com (Faramir)
Date: Tue, 02 Sep 2008 14:43:54 -0400
Subject: [Enigmail] Testing Signing
In-Reply-To: <48BD377D.8030706@cam.ac.uk>
References: <48BD377D.8030706@cam.ac.uk>
Message-ID: <48BD896A.7080907@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Alexander Hermes escribi?:
> Dear List,
> 
> I do hope I do not intrude too much but I am a new enigmail user and I
> am testing whether or not I can successfully sign an email...

  Your signature is good. And this is the right place to look for help
if something doesn't work...

Informaci?n de seguridad OpenPGPSIN CONFIANZA La firma de Alexander
Hermes (email) <ach68 at cam.ac.uk> es correcta
Id de clave: 0x4D409081 / Firmada el: 02-09-2008 8:54
Huella de la clave: 9FE4 A2AC 8F3F 8955 AAE8 8E3A 6F44 C031 4D40 9081

Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIvYlqAAoJEMV4f6PvczxAgcgH/3oufYofeJ6Yi+QoKVIeIDAB
a8IEqPJQGUobValH0famShDJfauZecod7LavC9y095x4ZxX7X/1NgB4ANmLCXaC2
Ad48u3tTvzLdvOS7uwsPWtTfcCiBeEa37k5/DLxONUWysLjSPpU5sFWcKm1NgJ3d
cU53L8sVxv3u9m85LIC8EuaS5QFuQP72WiST+GdHW7KizEQ/9eNGqwcu/tW7wVNv
XG/AlNg9tLPCjSCKii/90qGgsh4waBX5IiIYcb4D4axRsCUzGOoFKcd1/YWIwezP
DNbo6a8ARL71IUlUS2BGKOqlK4zp9Ourk/UXQWQpbj/x4kMfTTV65XdeZuIlisw=
=Nv5T
-----END PGP SIGNATURE-----

From wcollignon at gmail.com  Tue Sep  2 13:12:12 2008
From: wcollignon at gmail.com (Bill Collignon)
Date: Tue, 02 Sep 2008 16:12:12 -0400
Subject: [Enigmail] Testing Signing
In-Reply-To: <48BD896A.7080907@gmail.com>
References: <48BD377D.8030706@cam.ac.uk> <48BD896A.7080907@gmail.com>
Message-ID: <48BD9E1C.5010702@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Thank you, I'll consider that whenever I need help.

Faramir wrote:
> Alexander Hermes escribi?:
>> Dear List,
> 
>> I do hope I do not intrude too much but I am a new enigmail user and I
>> am testing whether or not I can successfully sign an email...
> 
>   Your signature is good. And this is the right place to look for help
> if something doesn't work...
> 
> Informaci?n de seguridad OpenPGPSIN CONFIANZA La firma de Alexander
> Hermes (email) <ach68 at cam.ac.uk> es correcta
> Id de clave: 0x4D409081 / Firmada el: 02-09-2008 8:54
> Huella de la clave: 9FE4 A2AC 8F3F 8955 AAE8 8E3A 6F44 C031 4D40 9081
> 
> Best Regards
_______________________________________________
Enigmail mailing list
Enigmail at mozdev.org
https://www.mozdev.org/mailman/listinfo/enigmail
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAki9nhwACgkQzLk7dEIRtMlWQwCfa31jhCtEhnyvePIGh1Uyb9JV
v6QAnj5he/hOn8Gp5gv+F97KcCOKqWsd
=CDSy
-----END PGP SIGNATURE-----

From healey.rich at gmail.com  Tue Sep  2 20:20:03 2008
From: healey.rich at gmail.com (Rich Healey)
Date: Wed, 03 Sep 2008 13:20:03 +1000
Subject: [Enigmail] Can't import keys on OSX
Message-ID: <48BE0263.5090802@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi, Sorry first and foremost, I'm not subscribed, could you please CC me?

It's not too bigger deal, I'm sure this list is mirrored somewhere.

I can't get enigmail to import keys using Thunderbird on OSX. I click
the pen, then select a keyserver I know works (and in the cases I try,
happen to know that it has the key, since afterwards doing gpg
- --recv-keys [keyid] works fine), and it asks me to please wait, but the
bar does not move.

All the debugging settings I could find for enigmail have not helped,
setting a log directory did not create any files, and the console is
always blank.

Thanks in advance


Rich Healey
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAki+AmMACgkQLeTfO4yBSAfXmgCgmEA5jl7hdAOBtb5oqnM7pe8L
LwQAnj6NNzQm/052/KwPsJz0EGFhdrw3
=Mto1
-----END PGP SIGNATURE-----

From wcollignon at gmail.com  Wed Sep  3 05:58:45 2008
From: wcollignon at gmail.com (Bill Collignon)
Date: Wed, 03 Sep 2008 08:58:45 -0400
Subject: [Enigmail] Can't import keys on OSX
In-Reply-To: <48BE0263.5090802@gmail.com>
References: <48BE0263.5090802@gmail.com>
Message-ID: <48BE8A05.2060905@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Rich,

I'm sorry, I don't know what you're asking me to do, but I'll reply to
your message and sign.

Bill

Rich Healey wrote:
> Hi, Sorry first and foremost, I'm not subscribed, could you please CC me?
> 
> It's not too bigger deal, I'm sure this list is mirrored somewhere.
> 
> I can't get enigmail to import keys using Thunderbird on OSX. I click
> the pen, then select a keyserver I know works (and in the cases I try,
> happen to know that it has the key, since afterwards doing gpg
> --recv-keys [keyid] works fine), and it asks me to please wait, but the
> bar does not move.
> 
> All the debugging settings I could find for enigmail have not helped,
> setting a log directory did not create any files, and the console is
> always blank.
> 
> Thanks in advance
> 
> 
> Rich Healey
_______________________________________________
Enigmail mailing list
Enigmail at mozdev.org
https://www.mozdev.org/mailman/listinfo/enigmail
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAki+igUACgkQzLk7dEIRtMk0kwCfSbXml6z/YKh11Cccjji98Qj/
zZMAni0BzRpnH+O2y7R9IeAPuoh1KHMS
=BSZR
-----END PGP SIGNATURE-----

From mlisten at hammernoch.net  Wed Sep  3 07:33:22 2008
From: mlisten at hammernoch.net (=?ISO-8859-1?Q?Ludwig_H=FCgelsch=E4fer?=)
Date: Wed, 03 Sep 2008 16:33:22 +0200
Subject: [Enigmail] Can't import keys on OSX
In-Reply-To: <48BE0263.5090802@gmail.com>
References: <48BE0263.5090802@gmail.com>
Message-ID: <48BEA032.4050808@hammernoch.net>

Hi,

Rich Healey wrote on 03.09.2008 5:20 Uhr:
> Hi, Sorry first and foremost, I'm not subscribed, could you please CC me?

Ask here, get your answer here...

> It's not too bigger deal, I'm sure this list is mirrored somewhere.

I see :-)

> I can't get enigmail to import keys using Thunderbird on OSX. I click
> the pen, then select a keyserver I know works (and in the cases I try,
> happen to know that it has the key, since afterwards doing gpg
> --recv-keys [keyid] works fine), and it asks me to please wait, but the
> bar does not move.

I observed this some time ago, too. Does the key management page work
for you? Maybe there's a bug in enigmail, that has been cured in a
nightly version of enigmail http://enigmail.mozdev.org/download/nightly.php

> All the debugging settings I could find for enigmail have not helped,
> setting a log directory did not create any files, and the console is
> always blank.

This is strange. What path did you set it to?

Ludwig

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 542 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080903/d80d8cf5/attachment.bin>

From aksheth at alcatel-lucent.com  Wed Sep  3 08:11:08 2008
From: aksheth at alcatel-lucent.com (Ashish K. Sheth)
Date: Wed, 03 Sep 2008 10:11:08 -0500
Subject: [Enigmail] Hello!
Message-ID: <48BEA90C.60702@alcatel-lucent.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Hi:

This is my first sample signed message. Please ignore.

<http://mobility.ih.lucent.com/~remc>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iEYEARECAAYFAki+qQwACgkQwxwuYs9qKuiedACeNwXJmJ/4XEOxTKUIWxnfshGh
4D4Anj1igyLGaWJdJVYKUGeJJqDH/7Zg
=sQkI
-----END PGP SIGNATURE-----

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080903/13477454/attachment.html>

From jmoore3rd at bellsouth.net  Wed Sep  3 09:05:57 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Wed, 03 Sep 2008 12:05:57 -0400
Subject: [Enigmail] Hello!
In-Reply-To: <48BEA90C.60702@alcatel-lucent.com>
References: <48BEA90C.60702@alcatel-lucent.com>
Message-ID: <48BEB5E5.104@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Ashish K. Sheth wrote:

> This is my first sample signed message. Please ignore.

UNTRUSTED Good signature from Ashish K. Sheth (Year you started with
Lucent) <aksheth at alcatel-lucent.com>
Key ID: 0xCF6A2AE8 / Signed on: 9/3/2008 11:11 AM
Key fingerprint: ACD2 9C50 8F81 C3EC FA50 E223 C31C 2E62 CF6A 2AE8

No need to either 'ignore' or continue with additional 'samples' as this
Message indicates that all is Good. :)

JOHN ;)
Timestamp: Wednesday 03 Sep 2008, 12:05  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4818: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIvrXkAAoJEBCGy9eAtCsP2hYH/iuKXokeiSFgBlix12/HR2Ov
pvVhzGtTZTrtOGYww2PJppLSluXX4vquWMX0B8znevpSLACz5wMk3jayweYAXH7C
B0Dvr4CdE9dQ9GEDG4QcrhPxYiZsAD90UMWYQUEmfsdmPIDFBL0AWCyuY+8I4wAA
KxtxRndyVttZLQrrP7SC/geDEBR0hP2f4x82L/9mfiLT/X8682NrP7UsxhRSj8ma
fGDopNTYcWyWO2PEIOBalEq/irzN/ddEkL9seqxYjnHTIPP6heHpDSZy3K9FFH3n
8q4MYmDDU5A6nxIBNboODoSNdCVouatmQJeWjSFeRPFmREyzOBqGriJ2VK5cVbs=
=+/hY
-----END PGP SIGNATURE-----

From varga at maroufi.com  Wed Sep  3 12:12:50 2008
From: varga at maroufi.com (Varga Maroufi)
Date: Wed, 03 Sep 2008 21:12:50 +0200
Subject: [Enigmail] OpenPGP SETUP WIZARD
Message-ID: <48BEE1B2.2060807@maroufi.com>

my language is Germany, I didn't understand your setup wizard....!!!
thank you

From healey.rich at gmail.com  Wed Sep  3 19:14:32 2008
From: healey.rich at gmail.com (Rich Healey)
Date: Thu, 04 Sep 2008 12:14:32 +1000
Subject: [Enigmail] Can't import keys on OSX
In-Reply-To: <48BEA032.4050808@hammernoch.net>
References: <48BEA032.4050808@hammernoch.net>
Message-ID: <48BF4488.4020806@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> Hi,
> 
> Rich Healey wrote on 03.09.2008 5:20 Uhr:
>> Hi, Sorry first and foremost, I'm not subscribed, could you please CC me?
> 
> Ask here, get your answer here...
> 
>> It's not too bigger deal, I'm sure this list is mirrored somewhere.
> 
> I see :-)
> 
>> I can't get enigmail to import keys using Thunderbird on OSX. I click
>> the pen, then select a keyserver I know works (and in the cases I try,
>> happen to know that it has the key, since afterwards doing gpg
>> --recv-keys [keyid] works fine), and it asks me to please wait, but the
>> bar does not move.
> 
> I observed this some time ago, too. Does the key management page work
> for you? Maybe there's a bug in enigmail, that has been cured in a
> nightly version of enigmail http://enigmail.mozdev.org/download/nightly.php
> 
>> All the debugging settings I could find for enigmail have not helped,
>> setting a log directory did not create any files, and the console is
>> always blank.
> 
> This is strange. What path did you set it to?
> 
> Ludwig
> 

Hi, I hope this attaches to the thread ok.

Updated to a nightly, works fine now :)

Thanks very much for the suggestion.

Regards


Rich Healey
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAki/RFoACgkQLeTfO4yBSAdHTACgyo/J57a+5LFJK1Fp2omrUWrY
5wYAnRkL9KL6KmM/ie9hDlhTocXvpu4K
=VtNc
-----END PGP SIGNATURE-----

From post at lespocky.de  Thu Sep  4 04:44:10 2008
From: post at lespocky.de (Alexander Dahl)
Date: Thu, 04 Sep 2008 13:44:10 +0200
Subject: [Enigmail] OpenPGP SETUP WIZARD
In-Reply-To: <48BEE1B2.2060807@maroufi.com>
References: <48BEE1B2.2060807@maroufi.com>
Message-ID: <0ML2xA-1KbDG81M7j-0002zJ@mrelayeu.kundenserver.de>

Hallo Varga,

> my language is Germany, I didn't understand your setup wizard....!!!
> thank you

Please use a localized version of Enigmail. You find a german language
pack on http://enigmail.mozdev.org/download/langpack.php
You have to install enigmail before you can use the language pack. You
can also consider to use the version from
http://www.erweiterungen.de/detail/Enigmail/

German translation:

Bitte nutze eine deutsche Version von Enigmail. Du findest die
sogenannten Language Packs unter
http://enigmail.mozdev.org/download/langpack.php
Um das Language Pack nutzen zu k?nnen, musst Du zuvor Enigmail selbst
installiert haben. Alternativ kannst Du auch eine Version von Enigmail
installieren, die das Language Pack gleich beinhaltet:
http://www.erweiterungen.de/detail/Enigmail/

Greets
Alex

P.S.: es gibt auch sehr ausf?hrliche deutsche Anleitungen zu PGP/GnuPG,
z.B. auf http://hp.kairaven.de/pgp/index.html

-- 
?With the first link, the chain is forged. The first speech censured,
the first thought forbidden, the first freedom denied, chains us all
irrevocably.? (Jean-Luc Picard, quoting Judge Aaron Satie)
*** GnuPG-FP: 02C8 A590 7FE5 CA5F 3601  D1D5 8FBA 7744 CC87 10D0 ***

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080904/f5ffba61/attachment.bin>

From mlisten at hammernoch.net  Thu Sep  4 06:12:45 2008
From: mlisten at hammernoch.net (=?ISO-8859-1?Q?Ludwig_H=FCgelsch=E4fer?=)
Date: Thu, 04 Sep 2008 15:12:45 +0200
Subject: [Enigmail] OpenPGP SETUP WIZARD
In-Reply-To: <48BEE1B2.2060807@maroufi.com>
References: <48BEE1B2.2060807@maroufi.com>
Message-ID: <48BFDECD.9010702@hammernoch.net>

Hi,

Varga Maroufi wrote on 03.09.2008 21:12 Uhr:
> my language is Germany, I didn't understand your setup wizard....!!!
> thank you

In which version of Thunderbird did you install Enigmail? Which version
of Enigmail did you install?

Newer official versions of Enigmail are multilingual - they should take
the language setting from Thunderbird.

So: take a german Thunderbird or switch Thunderbird to german, and
Enigmail will be in german.

As you're not subscribed: You might want to subscribe to the mailing
list (at http://www.mozdev.org/mailman/listinfo/enigmail), so that you
can receive other answers as well. Otherwise you have to read them in
the archives (http://mozdev.org/pipermail/enigmail/index.html)


In german:

In welche Version von Thunderbird wurde Enigmail installiert? Welche
Version von Enigmail wurde installiert?

Neuere Versionen von Enigmail sind mehrsprachig - sie sollten die
Sprache von Thunderbird ?bernehmen.

Also: Nehm' einen deutschen Thunderbird oder schalte Thunderbird auf
deutsch um, und dann wird Enigmail auch deutschsprachig.

Nachdem Du nicht auf der Mailingliste eingeschrieben bist, solltest Du
Dich registrieren (unter
http://www.mozdev.org/mailman/listinfo/enigmail), damit Du auch alle
sp?teren Antworten lesen kannst. Alternativ kannst Du die Antworten auch
im Archiv nachlesen: http://mozdev.org/pipermail/enigmail/index.html


Ludwig

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 542 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080904/15cae2a6/attachment.bin>

From post at lespocky.de  Thu Sep  4 06:16:58 2008
From: post at lespocky.de (Alexander Dahl)
Date: Thu, 4 Sep 2008 15:16:58 +0200
Subject: [Enigmail] Hello World
In-Reply-To: <48B86849.70304@sixdemonbag.org>
References: <48B828AA.807@gmail.com> <48B82A3D.2050506@gmail.com>
	<48B82E20.4040009@gmail.com>
	<0ML2xA-1KZ7hV0DE7-0003Iv@mrelayeu.kundenserver.de>
	<48B84D88.5080209@sixdemonbag.org>
	<0MKwh2-1KZBCU0MJE-00075S@mrelayeu.kundenserver.de>
	<48B86849.70304@sixdemonbag.org>
Message-ID: <20080904131658.GA14866@poldy.lespocky.dyndns.org>

Hello, 

> If your correspondent is annoyed and/or disturbed by an inline
> signature, the odds are very good your correspondent is neither
> bothering to check the signature nor validate your key.  That makes the
> signature worthless.  So why are you sending it?

Spread the idea of mail signing, make it possible to verify later, ...

> > the recipient wants to be sure the mail is from me: he should ask.
> 
> And how will your correspondent be able to trust your response?  Calling
> you up voice to get confirmation of the contents of each email seems
> awful inconvenient: why wouldn't you just call the person directly anyway?

You misunderstood me. I didn't mean asking if the mail was from me but
asking for a signed version of the mail which arrives for sure.

> > 90% don't care anyway and I don't disturb them with an inline 
> > signature.
> 
> This is not an argument for PGP/MIME.  This is an argument for using
> per-recipient signature rules.

This is the same argument as above. How should I convince people of
using signed mails if they never get some from me because I had a
per-recipient rule that circumvented this?

> > What are the reasons for defaulting to inline signatures despite of 
> > MTAs stripping attachements?
> 
> It's simpler.  It's supported by more MUAs.  There are more
> implementations available.  Simplicity equals reliability and diversity.

I don't think so. The reliability of a signature should come on first
place. It's not only worthless if it can't be verified although it
should be (no manipulation by an attack) but distracting and causes
additional communication and work which is not necessary if the
signature can be safely verified.

Greets from a mail client defaulting to PGP/MIME ;)
Alex

-- 
***** http://www.lespocky.de *******************************************
GnuPG-FP: 02C8 A590 7FE5 CA5F 3601  D1D5 8FBA 7744 CC87 10D0
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080904/ff4e8134/attachment.bin>

From DAB268 at gmx.de  Thu Sep  4 07:50:39 2008
From: DAB268 at gmx.de (Christian Bruckhoff)
Date: Thu, 04 Sep 2008 16:50:39 +0200
Subject: [Enigmail]  How to use fingerprints?
Message-ID: <g9osju$1api$1@mozdev.mozdev.org>

Hi.

Some of my mates have attached their fingerprint in the mail sinature.
How can I use it? As I've understood it, I can get he complete key with
it, but how?

Regards
Christian

From jmoore3rd at bellsouth.net  Thu Sep  4 08:01:52 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Thu, 04 Sep 2008 11:01:52 -0400
Subject: [Enigmail] Hello World
In-Reply-To: <20080904131658.GA14866@poldy.lespocky.dyndns.org>
References: <48B828AA.807@gmail.com>
	<48B82A3D.2050506@gmail.com>	<48B82E20.4040009@gmail.com>	<0ML2xA-1KZ7hV0DE7-0003Iv@mrelayeu.kundenserver.de>	<48B84D88.5080209@sixdemonbag.org>	<0MKwh2-1KZBCU0MJE-00075S@mrelayeu.kundenserver.de>	<48B86849.70304@sixdemonbag.org>
	<20080904131658.GA14866@poldy.lespocky.dyndns.org>
Message-ID: <48BFF860.8070801@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Alexander Dahl wrote:

> Greets from a mail client defaulting to PGP/MIME ;)

And if Your Recipient is using Outlook, Outlook Express or Windows Mail?
 These 3 widely used MUA's _cannot_ handle PGP/MIME so You may be
inadvertently creating more hassle for the Recipient.

Experience has shown that 'forcing' Recipients to 'deal' with useless
Signatures doesn't move them to adopt encryption but rather causes them
to adopt an "Ah, Jeez.....' response to seeing Email from You in their
Inbox.  :-\  Additionally, the Signature may be view with the same
distaste as the A/V 'ads' suffixed by many Applications; particularly to
those operating under bandwidth limits.

JOHN ;)
Timestamp: Thursday 04 Sep 2008, 11:00  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4818: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIv/hfAAoJEBCGy9eAtCsPECUIAIz2tmeMlz+KRsTJGI0UEnVd
8UslSMJZEicI9OT2DjCQOOYkVqDRU3VIKjxIKa9eeBOli1X1g8AUysfGQgk/WxdV
MPjMnWpn8nIGUfBep/A7g0zYWfmA2Pvu2lfRzhflTJBYsMYZ8aL/U6BfDzvHSLtx
L+7WL3yl56A4HuNFzVR7h4k4l73etY1FckDbNolq/LW9sdJDu9BtQ2GJtHcHz5Uj
b3p86AqA77qxM47ye1veRNNbY/AKtb+hs84l90kknnj0pSCh5WiRJpG5mFO23S2n
awknV4nLzdhou2KydNv4cDuFhwzGzAECVM42XCCGJuaN/eU/OKdnkvZX2Nd8CRs=
=LHbs
-----END PGP SIGNATURE-----

From post at lespocky.de  Thu Sep  4 08:20:07 2008
From: post at lespocky.de (Alexander Dahl)
Date: Thu, 4 Sep 2008 17:20:07 +0200
Subject: [Enigmail] How to use fingerprints?
In-Reply-To: <g9osju$1api$1@mozdev.mozdev.org>
References: <g9osju$1api$1@mozdev.mozdev.org>
Message-ID: <20080904152007.GB14866@poldy.lespocky.dyndns.org>

Hi,

> Some of my mates have attached their fingerprint in the mail sinature.
> How can I use it? As I've understood it, I can get he complete key with
> it, but how?

Take the last 8 digits as a key ID and pull it from a keyserver. As you
can see with the fingerprint in my signature below: take CC87 10D0 and
write it as 0xCC8710D0 when requesting from a keyserver. This doesn't
apply to some old keys, but most should do well.

Greets
Alex

-- 
***** http://www.lespocky.de *******************************************
GnuPG-FP: 02C8 A590 7FE5 CA5F 3601  D1D5 8FBA 7744 CC87 10D0
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080904/bf524bb2/attachment.bin>

From post at lespocky.de  Thu Sep  4 08:26:27 2008
From: post at lespocky.de (Alexander Dahl)
Date: Thu, 4 Sep 2008 17:26:27 +0200
Subject: [Enigmail] Hello World
In-Reply-To: <48BFF860.8070801@bellsouth.net>
References: <48B828AA.807@gmail.com> <48B82A3D.2050506@gmail.com>
	<48B82E20.4040009@gmail.com>
	<0ML2xA-1KZ7hV0DE7-0003Iv@mrelayeu.kundenserver.de>
	<48B84D88.5080209@sixdemonbag.org>
	<0MKwh2-1KZBCU0MJE-00075S@mrelayeu.kundenserver.de>
	<48B86849.70304@sixdemonbag.org>
	<20080904131658.GA14866@poldy.lespocky.dyndns.org>
	<48BFF860.8070801@bellsouth.net>
Message-ID: <20080904152627.GC14866@poldy.lespocky.dyndns.org>

Hi, 

> And if Your Recipient is using Outlook, Outlook Express or Windows Mail?
>  These 3 widely used MUA's _cannot_ handle PGP/MIME so You may be
> inadvertently creating more hassle for the Recipient.

Recent Outlook versions can handle this. OE and Windows Mail don't but
you don't want to use OE anyway cause it has various other malfunctions.

> Experience has shown that 'forcing' Recipients to 'deal' with useless
> Signatures doesn't move them to adopt encryption but rather causes them
> to adopt an "Ah, Jeez.....' response to seeing Email from You in their
> Inbox.  :-\  Additionally, the Signature may be view with the same
> distaste as the A/V 'ads' suffixed by many Applications; particularly to
> those operating under bandwidth limits.

Recipients have to deal with inline sigs even more than with attached
ones. The first thing you see when reading an inline signed mail with a
MUA which doesn't remove it, is no friendly greeting but the signing
header.

Greets
Alex

-- 
***** http://www.lespocky.de *******************************************
GnuPG-FP: 02C8 A590 7FE5 CA5F 3601  D1D5 8FBA 7744 CC87 10D0
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080904/79b745ad/attachment.bin>

From jmoore3rd at bellsouth.net  Thu Sep  4 08:49:58 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Thu, 04 Sep 2008 11:49:58 -0400
Subject: [Enigmail] Hello World
In-Reply-To: <20080904152627.GC14866@poldy.lespocky.dyndns.org>
References: <48B828AA.807@gmail.com>
	<48B82A3D.2050506@gmail.com>	<48B82E20.4040009@gmail.com>	<0ML2xA-1KZ7hV0DE7-0003Iv@mrelayeu.kundenserver.de>	<48B84D88.5080209@sixdemonbag.org>	<0MKwh2-1KZBCU0MJE-00075S@mrelayeu.kundenserver.de>	<48B86849.70304@sixdemonbag.org>	<20080904131658.GA14866@poldy.lespocky.dyndns.org>	<48BFF860.8070801@bellsouth.net>
	<20080904152627.GC14866@poldy.lespocky.dyndns.org>
Message-ID: <48C003A6.80708@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Alexander Dahl wrote:

> Recent Outlook versions can handle this. OE and Windows Mail don't but
> you don't want to use OE anyway cause it has various other malfunctions.

Outlook 2007 will handle this but not everyone has 'Upgraded' to Outlook
2007.

My point is that routinely Signing _every_ Email to non-Encryption Users
accomplishes very little, if anything at all.  Of course, the Comment
fields /may/ provide some useful information in the Signature block.  :-\

JOHN ;)
Timestamp: Thursday 04 Sep 2008, 11:49  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4818: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIwAOkAAoJEBCGy9eAtCsPwTYH/1JjGnUuzQMoPBGtxZ5uN47q
bmzFmzDa8OQeKWoXCxiQS8eW5umER2fqyKSxxCB+25kiSp7P786RUmQrDHncyL5z
B2l9boydkby19kqzV3mpJ5rhoOEovBkxzoWgICsKJt2GP3SvPkf0m5HaYoB/lF6h
9K28k8D42otUqyP83C5xVyP0CTyfo5uCDNq6gXQcWbygt/ye0afCptlq1TRaLl7+
94xOYCpFFQmi+oNlf1+2vb/I0v+9mxUCWAWu4wKsZ3SWeFYjIaK1VyaI/XhFI4y9
KUI1AXWcbguoIgEz8YYD8LyQ1AUacy3HTYULumqqxtza45BDNz22ZEHnlSnMyTo=
=rzqh
-----END PGP SIGNATURE-----

From dlverlee at mtu.edu  Thu Sep  4 11:08:15 2008
From: dlverlee at mtu.edu (Derek VerLee)
Date: Thu, 04 Sep 2008 14:08:15 -0400
Subject: [Enigmail] How to use fingerprints?
In-Reply-To: <20080904152007.GB14866@poldy.lespocky.dyndns.org>
References: <g9osju$1api$1@mozdev.mozdev.org>
	<20080904152007.GB14866@poldy.lespocky.dyndns.org>
Message-ID: <48C0240F.1030700@mtu.edu>

Alexander Dahl wrote:
> Hi,
> 
>> Some of my mates have attached their fingerprint in the mail sinature.
>> How can I use it? As I've understood it, I can get he complete key with
>> it, but how?
> 
> Take the last 8 digits as a key ID and pull it from a keyserver. As you
> can see with the fingerprint in my signature below: take CC87 10D0 and
> write it as 0xCC8710D0 when requesting from a keyserver. This doesn't
> apply to some old keys, but most should do well.
> 
> Greets
> Alex
> 

This might be a naive question, but isn't the point of fingerprint to 
provide a convenient way to verify you are seeing the correct key, when 
you are communicating over a channel where you have some other way of 
authenticating that person's identity, IE, on a phone where you can 
recognize their voice, or in person?  What additional information is 
given by the fingerprint at the end of the email?  If it is signed, we 
already know the key and we decide to trust it or not.  If it is not 
signed, all we know is that a person or persons A has sent and email, 
some person or persons B may have modified that email, before we see it, 
and it has a fingerprint which corresponds to some key pair, that we 
might decide to trust is controlled by person C, but in any case may or 
may not be the same as A or B.

_derek

From ben at unscanned.com  Thu Sep  4 11:22:27 2008
From: ben at unscanned.com (Ben)
Date: Thu, 04 Sep 2008 20:22:27 +0200
Subject: [Enigmail] Signing Test
Message-ID: <48C02763.6010508@unscanned.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Dear list member,

this is (hopefully) my first signed message.

I'm a newbie just starting out with GnuPG and Enigmail and I don't know
if i did right.

Yours, Ben
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)

iEYEARECAAYFAkjAJ2MACgkQ1eP2uCtUCSjXEQCggLxfbuL5lquPNqSbUJWRj5Wj
RY8An3jOQzWBtWv82+UpKesI+3tn44kk
=bJJh
-----END PGP SIGNATURE-----

From rbrtryn at gmail.com  Thu Sep  4 11:41:39 2008
From: rbrtryn at gmail.com (Robert Ryan)
Date: Thu, 04 Sep 2008 12:41:39 -0600
Subject: [Enigmail] Signing Test
In-Reply-To: <48C02763.6010508@unscanned.com>
References: <48C02763.6010508@unscanned.com>
Message-ID: <48C02BE3.7020509@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 9/4/2008 12:22 PM, Ben wrote:
> I'm a newbie just starting out with GnuPG and Enigmail and I don't know
> if i did right.

Good job! :-)

UNTRUSTED Good signature from Ben <ben at unscanned.com>
Key ID: 0x2B540928 / Signed on: 9/4/2008 12:22 PM
Key fingerprint: 214F 554F 9216 5725 631F 9443 D5E3 F6B8 2B54 0928

Feel free to email me direct if you want to test encryption.
- --
Robert Ryan

I prefer encrypted email :)
My PGP keys: http://tinyurl.com/5snkgq

===================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIwCvjAAoJEPPvtS8+XvsGco0IALS68cDtq4cpgjTBy0BV+cZ4
5ftkd4EQJSkFXGPEvXxcNT/WIm80Ge9VgMHUm71UNd/rcdKL4oOLm00Ni1OcEjpj
YsiafPrIu57BkBAA33ksfyLLPc7sPJGTny9DS3oYl4eyLEL4IW+vPoAJuNsocBB1
0mGdYiUZOMAcBYATTwhq/FzX8bVQftVDlxHcPdmCRhFp1WWWu1ezWMtKatKgTum2
0qz0KB7lxsLKz+xg0F2RAn0+cS32XdKsY9IBqKPWDA8Utdogp5qVtb+dyBwgaUMf
YtxSWxPp7H0gVHMd5X7kE2N16o2J5wEPg/r+m7JEzEhbTaglGG6SegVqR1mmBpM=
=kfDx
-----END PGP SIGNATURE-----

From rjh at sixdemonbag.org  Thu Sep  4 12:17:54 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Thu, 04 Sep 2008 14:17:54 -0500
Subject: [Enigmail] How to use fingerprints?
In-Reply-To: <48C0240F.1030700@mtu.edu>
References: <g9osju$1api$1@mozdev.mozdev.org>	<20080904152007.GB14866@poldy.lespocky.dyndns.org>
	<48C0240F.1030700@mtu.edu>
Message-ID: <48C03462.6000006@sixdemonbag.org>

Derek VerLee wrote:
> This might be a naive question...

This question might be many things, but na?ve ain't one of 'em.  It's an
excellent question.

> isn't the point of fingerprint to provide a convenient way to verify 
> you are seeing the correct key, when you are communicating over a 
> channel where you have some other way of authenticating that person's
>  identity?

Strike the word 'convenient' and you have it exactly right.

> What additional information is given by the fingerprint at the end of
> the email?

For a while I used to include my fingerprint in my sigblock.  It wasn't
for any cryptographic purpose -- it was solely as a way of
evangelization.  When people asked me what that weird string was at the
bottom of my sigblock, I took the opportunity to talk to them about
email privacy and security.

However, you're right: it serves essentially no cryptographic purpose.
If you're concerned about collisions in the short key ID (look at how
many keys 0xDEADBEEF there are on the servers), then you can look it up
by the full fingerprint -- but really, that's about the only
cryptographic purpose I can see.


From jmoore3rd at bellsouth.net  Thu Sep  4 12:30:57 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Thu, 04 Sep 2008 15:30:57 -0400
Subject: [Enigmail] Signing Test
In-Reply-To: <48C02763.6010508@unscanned.com>
References: <48C02763.6010508@unscanned.com>
Message-ID: <48C03771.3080209@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Ben wrote:

> this is (hopefully) my first signed message.
> 
> I'm a newbie just starting out with GnuPG and Enigmail and I don't know
> if i did right.

UNTRUSTED Good signature from Ben <ben at unscanned.com>
Key ID: 0x2B540928 / Signed on: 9/4/2008 2:22 PM
Key fingerprint: 214F 554F 9216 5725 631F 9443 D5E3 F6B8 2B54 0928

It appears that You have done things Correctly.  Thanks for Uploading
Your Key to the Keyservers to facilitate verification of Your Signature.  :)

JOHN ;)
Timestamp: Thursday 04 Sep 2008, 15:30  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4818: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIwDdwAAoJEBCGy9eAtCsP1t8IAKVzWVu5G3/tv//cXUP22Arv
1GGnhxeydg3sHUbGxeYlp2YLXoXmxzMBuhLorF6bVAG7ISfjJ4fFlui0Q6Hwc/GY
sNEYMQKYHD6KfofC/WjI0WtmOo242pJQ/opJksHo5gcR4FsHe+e76HRg2jiJG4BE
YoKZzarSdChqlaLtdTFSC5LkDDQFkR72Yd6Z88bNUzUXWt2hGmexGAc0pvXz7k6D
3aHim7YHa5RJ6vwqY2lidBZLPiSIQLJ0rrDgwrvztkfGy4T6n9PDBA3oL+Xo9POa
9Cef1deDEHfrAOYBG/Tgh6i923dFXXOwBxYS0Zh/is4UVmttoMQ6YDlDIiEXPJU=
=UGRt
-----END PGP SIGNATURE-----

From faramir.cl at gmail.com  Fri Sep  5 01:46:57 2008
From: faramir.cl at gmail.com (Faramir)
Date: Fri, 05 Sep 2008 04:46:57 -0400
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
Message-ID: <48C0F201.3020308@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

I am sorry for bringing this question here, it is not related to enigmail.

I'd like to know where should I look for info about how to develop an
XPI addon for FireFox... I know almost nothing about the subject, and
google disappointed me this time... I found too much info, but it seems
most of it was not useful for a newbie (I mean, I found things about how
to modify FireFox itself... and a lot of other things, some said they
were almost deprecated...). Actually, I just need to remove a bug from
an addon, which started with FireFox 3 (it worked perfectly with FF2,
and in a specific circumstance, it still does with FF3. In other
circumstances, it generates a security error, and crash).

 Unfortunately, both the project owner and the "current" developer are
MIA, so it seems someone else will have to do something... and the
license is GPL, so it should be ok to pick up the project... at least
while the official "team" comes back from wherever they may be... I
don't have too much hope of success, but at least I should try.

 Best Regards, and sorry for the OT.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIwPIBAAoJEMV4f6PvczxAwsMH/AsTlrArhlZq3w3jXtrwiI0B
GgdlWGbkrssCO5oiioIjXUzhw/PfdZPZsxU9/AwfAz00uLsuH/1o4oqSYc7n4nJL
QMvT62cFNRD++G0TPZhZxY/msuDfN/4Y9Q9unNTwEwPd9HiWa7Y8bowoL4KYJO5F
pRhDYf35fK+WkoaQZQj55IN50Un3p3FSnsu/AhiFrsQ3wY/0HtOfTDmaRDelx02M
IY5DKL6Q9DEp7TXSiPmRlYQAixrWcaBtIjdmmynljwoIfX34D4QnwbVkv9PV+Vme
mpfZpCTkFnafCaqKMuMaD//sgrQF9Hv5rJv0XZE8rZ2+f+x8wyKE10aIpYAnJ6Y=
=QgJk
-----END PGP SIGNATURE-----

From rjh at sixdemonbag.org  Fri Sep  5 01:54:50 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Fri, 05 Sep 2008 03:54:50 -0500
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
In-Reply-To: <48C0F201.3020308@gmail.com>
References: <48C0F201.3020308@gmail.com>
Message-ID: <48C0F3DA.3010000@sixdemonbag.org>

Faramir wrote:
> I'd like to know where should I look for info about how to develop an
> XPI addon for FireFox...

http://developer.mozilla.org/en/Learn_XPI_Installer_Scripting_by_Example


From rjh at sixdemonbag.org  Fri Sep  5 02:00:33 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Fri, 05 Sep 2008 04:00:33 -0500
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
In-Reply-To: <48C0F3DA.3010000@sixdemonbag.org>
References: <48C0F201.3020308@gmail.com> <48C0F3DA.3010000@sixdemonbag.org>
Message-ID: <48C0F531.8040306@sixdemonbag.org>

Robert J. Hansen wrote:
> http://developer.mozilla.org/en/Learn_XPI_Installer_Scripting_by_Example

D'oh!  Faramir, you weren't kidding about most of the things being
deprecated.

http://developer.mozilla.org/en/Bundles

That one may be more useful to you.  At the very least, expect to get on
a first-name basis with JavaScript.  You may find it convenient to learn
Scheme first; most advanced JavaScript techniques are very, very similar
to Scheme techniques, and Scheme is a much easier language to learn.


From faramir.cl at gmail.com  Fri Sep  5 02:14:53 2008
From: faramir.cl at gmail.com (Faramir)
Date: Fri, 05 Sep 2008 05:14:53 -0400
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
In-Reply-To: <48C0F531.8040306@sixdemonbag.org>
References: <48C0F201.3020308@gmail.com> <48C0F3DA.3010000@sixdemonbag.org>
	<48C0F531.8040306@sixdemonbag.org>
Message-ID: <48C0F88D.1030609@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Robert J. Hansen escribi?:
> Robert J. Hansen wrote:
>> http://developer.mozilla.org/en/Learn_XPI_Installer_Scripting_by_Example
> 
> D'oh!  Faramir, you weren't kidding about most of the things being
> deprecated.

  Yes... but your first link was useful. I unzipped the xpi package, and
found the "install.rdf manifest", so it seems it uses a more updated
format... and there are some links a lot more interesting than the links
I had found :)

  Now I am a few steps closer to the "good" info (and it is true, I need
to learn JavaScript... however, I hope I can find the "new rule" the
addon is not following... or at least, I hope so. If I had to make it
from scratch, I would just sit and wait).

  Thanks again, the links look "juicy" :)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIwPiMAAoJEMV4f6PvczxAj6UIAKKv7sID5DcqoMuqy0DvvECi
soyjBvhgPK4MPY1ArXtBXqbot0jaiIFvkzXCIyadENuX80t/Txg4o0MKCMq8Qv/8
bRVkhBZ2AIzvYAEHgSy41j+3IxVHU9fQph4mG+VJilL7Eytzqhi9EmjaHozfeHTo
v7D+yGrw7sNqUlMuDiliT8Wr1DkQbdGDgBa+YYCNd5a59j227RFnyePnd7P8bnQE
+G1JLDQt2/8VM9gH4OHcUTLsrEI99KCh/IJyxP3YKpGMpyya1Ck355/bHbFXcjR1
ekygpfZIVxfzz7TPZ0bR3J8l5rkpAh4uPFwlQ5gWR+Mi4D4YJ3g7wloR84Kbq/0=
=5gd1
-----END PGP SIGNATURE-----

From patrick at mozilla-enigmail.org  Fri Sep  5 02:29:36 2008
From: patrick at mozilla-enigmail.org (Patrick Brunschwig)
Date: Fri, 05 Sep 2008 11:29:36 +0200
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
In-Reply-To: <48C0F201.3020308@gmail.com>
References: <48C0F201.3020308@gmail.com>
Message-ID: <48C0FC00.5040702@mozilla-enigmail.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Faramir wrote:
> I am sorry for bringing this question here, it is not related to enigmail.
> 
> I'd like to know where should I look for info about how to develop an
> XPI addon for FireFox... I know almost nothing about the subject, and
> google disappointed me this time... I found too much info, but it seems
> most of it was not useful for a newbie (I mean, I found things about how
> to modify FireFox itself... and a lot of other things, some said they
> were almost deprecated...). Actually, I just need to remove a bug from
> an addon, which started with FireFox 3 (it worked perfectly with FF2,
> and in a specific circumstance, it still does with FF3. In other
> circumstances, it generates a security error, and crash).
> 
>  Unfortunately, both the project owner and the "current" developer are
> MIA, so it seems someone else will have to do something... and the
> license is GPL, so it should be ok to pick up the project... at least
> while the official "team" comes back from wherever they may be... I
> don't have too much hope of success, but at least I should try.
> 
>  Best Regards, and sorry for the OT.

I would actually start here:
<http://developer.mozilla.org/en/Extensions>

If you have questions regarding the creation of extensions or similar,
I'd recommend the Extensions mailing list at mozilla.org:
<https://lists.mozilla.org/listinfo/dev-extensions>

- -Patrick
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEVAwUBSMD7/3cOpHodsOiwAQIwBAgArMkyVdmOp+/gQ9V1nl8x8GuQGZKskT2d
k5FllcxTiQ5ub9nrNBx1Fq7ip0/RvdFkZoKgPPQtteMXjNI7LNciKqunZEP1Oa8c
zXT0DpuxeU4ePknL9w7bk8BAqATMwIuHMp5fzsJKbJVuqbrZQfNyPFumBgTmGVz/
Apb1VfRlSJshNUzwhYQ4P2g0OkwhzOXS8rwqLct2QkOsiCMwMbXXKO4uu/giO4/G
s9lauykcCWkmc07/SP8H/4lk9eJPeW6kW0RWLf2F+1sZzr7ywYkgZajpOyY2LFGP
8lBwBMXMvuH/mIIBUhMyTCOiqeqE+I8mU5gzfarE1yIv5jdcpvWHPg==
=3dhc
-----END PGP SIGNATURE-----

From jmoore3rd at bellsouth.net  Fri Sep  5 04:32:10 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Fri, 05 Sep 2008 07:32:10 -0400
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
In-Reply-To: <48C0F88D.1030609@gmail.com>
References: <48C0F201.3020308@gmail.com>
	<48C0F3DA.3010000@sixdemonbag.org>	<48C0F531.8040306@sixdemonbag.org>
	<48C0F88D.1030609@gmail.com>
Message-ID: <48C118BA.7080402@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Faramir wrote:

>   Yes... but your first link was useful. I unzipped the xpi package, and
> found the "install.rdf manifest", so it seems it uses a more updated
> format... and there are some links a lot more interesting than the links
> I had found :)

Which Extension are You attempting to 'tweak'?  Lots of times You are
not the first to experience an issue and someone else may have already
'corrected' Your problem and be willing to share.

JOHN ;)
Timestamp: Friday 05 Sep 2008, 07:31  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIwRi4AAoJEBCGy9eAtCsPTeEH/jGRqYo+bZWoSsJlBwPIYFEX
BK0WGKpi7QrTk4UoWm86K7hmSqMTM2PXfOWl8XXkRr+n3gxeeUlWLHPkhbVlMUIg
KAljun5tFCQh860YyX3QQOQCzYUMP3+yQWKVidIZ41eFpcEawIwHIU/IPp9pLveq
rwyrH/iO5YeiwuLUrgyY9jpJSuTw/ltwPY1FGvoIRYurKQDM2B0dXTR0PyVtFgbJ
37AATm18BLPVXytZUnuNelaEW47LaPDcssW1K+XLzPfwcsxPpOjdgf1uXlsmYNeP
D5cZmOpnbXu6U5rDOH18xgDWx9HSPhdfv+2CsJh4SuzRN9Gi8gKt3uE9hZ36Ov8=
=qPr9
-----END PGP SIGNATURE-----

From jmoore3rd at bellsouth.net  Fri Sep  5 04:34:37 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Fri, 05 Sep 2008 07:34:37 -0400
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
In-Reply-To: <48C0FC00.5040702@mozilla-enigmail.org>
References: <48C0F201.3020308@gmail.com>
	<48C0FC00.5040702@mozilla-enigmail.org>
Message-ID: <48C1194D.7020907@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Patrick Brunschwig wrote:

> I would actually start here:
> <http://developer.mozilla.org/en/Extensions>
> 
> If you have questions regarding the creation of extensions or similar,
> I'd recommend the Extensions mailing list at mozilla.org:
> <https://lists.mozilla.org/listinfo/dev-extensions>

FWIW, the #Extensions Channel on irc.mozilla.org may be useful as well
as the IRC Channel dedicated to the specific Extension You are
interested in.

JOHN ;)
Timestamp: Friday 05 Sep 2008, 07:34  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIwRlMAAoJEBCGy9eAtCsPbPUH/idRFzEWiTiUFsM3ysmRxNsw
Q8C4z+R6mu0rqbRGrJ2xYnj/ynAzn90JLdqPkNtNWwWAGMs+tws9mAch3Dse3Ls6
1rhFwXt+TZxCHpJom/qFzpkMwAucPYgXDEHH5L3RMec77uE6ZNsSSP7dL5MwuD65
eQPrG8jzfZLjzsywaOlx3r7YDNxDZfnKWcB/f3CFs+LVrtOtrIF0LfnPK3lJnbxC
yyJuh82ExCnnNVWXJTj0Yosv0Fq0f/nQxeczT6ZJ7Rs/TGbPNJf5z4CwrQ4vvT4E
aC1IYmTCtv3EIy9OJkVUccsVAyZ140NsxwLW6k55o3muEIQIupbq/VAqoqVUPhU=
=sHo5
-----END PGP SIGNATURE-----

From faramir.cl at gmail.com  Fri Sep  5 13:25:54 2008
From: faramir.cl at gmail.com (Faramir)
Date: Fri, 05 Sep 2008 16:25:54 -0400
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
In-Reply-To: <48C118BA.7080402@bellsouth.net>
References: <48C0F201.3020308@gmail.com>	<48C0F3DA.3010000@sixdemonbag.org>	<48C0F531.8040306@sixdemonbag.org>	<48C0F88D.1030609@gmail.com>
	<48C118BA.7080402@bellsouth.net>
Message-ID: <48C195D2.8080500@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

John W. Moore III escribi?:
> Faramir wrote:
> 
>>   Yes... but your first link was useful. I unzipped the xpi package, and
>> found the "install.rdf manifest", so it seems it uses a more updated
>> format... and there are some links a lot more interesting than the links
>> I had found :)
> 
> Which Extension are You attempting to 'tweak'?  Lots of times You are
> not the first to experience an issue and someone else may have already
> 'corrected' Your problem and be willing to share.

  Well, I want to "fix" the Ogamecompactor addon for FireFox, it can be
found at http://ogamecompactor.mozdev.org/

  They have a mailing list, but the only messages in that list are the
messages of people asking "are the developers still alive?". It is a
tool to process battle reports in an online multiplayer game named
Ogame. In fact, the problem is known as "it doesn't work with FireFox3".
That is not "true", it should be "unless you use the default game skin,
it doesn't work with FireFox3", and other players have started
developing tools to do the same job, but not integrated with the browser
("copy the report, paste is at this tool, and click..."). So I think
probably it is some problem with the way FireFox3 handles the
permissions to access external resources... So I hope it is not so
complex to fix... First, I need to try to get the error message, and
then try to figure what security policy is not being followed by the
extension...

  Thanks for the advices, I will read about how these things work...

 Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIwZXSAAoJEMV4f6PvczxAgMwH/itQUYyc9sPkRcIBQXHyvey+
z+47TwGoPQtu6kbPBpR13AyI/BtDa6ITF5Skza6Gmi7Zef9D7T/CxCiMk9iQc6NB
ilFIbq8gWFuPl9gqsKyOyej1v1AWXvUx2co+cUyaIcLeI7y9IISn06amSrNTttvQ
rQpRG/oFCxOrzp8ktA+Ykdehfoa6zt8nk91ccTRRJOAg5bdKjI6786R+QzBcL8Y4
lhFL2254cF3PIDWW8VU0UvFXsqpBdHiDYVcxPppVp4CxntFg/i/1pUB0qPsyto6U
6d5yvjk+XWonshXUAbSbuMfRl5rnNx4b4hBASYgbgglpHbj7Rym1CZ8aFYR1QY0=
=vcUb
-----END PGP SIGNATURE-----

From rbrtryn at gmail.com  Fri Sep  5 14:57:00 2008
From: rbrtryn at gmail.com (Robert Ryan)
Date: Fri, 05 Sep 2008 15:57:00 -0600
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
In-Reply-To: <48C195D2.8080500@gmail.com>
References: <48C0F201.3020308@gmail.com>	<48C0F3DA.3010000@sixdemonbag.org>	<48C0F531.8040306@sixdemonbag.org>	<48C0F88D.1030609@gmail.com>	<48C118BA.7080402@bellsouth.net>
	<48C195D2.8080500@gmail.com>
Message-ID: <48C1AB2C.8000603@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 9/5/2008 2:25 PM, Faramir wrote:
> Well, I want to "fix" the Ogamecompactor addon for FireFox, it can be
> found at http://ogamecompactor.mozdev.org/
> 
> They have a mailing list, but the only messages in that list are the 
> messages of people asking "are the developers still alive?".

Sounds like "vaporware"; i.e. an abandoned project. You might try one of
the other extensions available here:

https://addons.mozilla.org/en-US/firefox/search?q=ogame&cat=all

Unless you are well versed in javascript, trying to fix this yourself is
going to be an exercise in frustration.
- --
Robert Ryan

I prefer encrypted email :)
My PGP keys: http://tinyurl.com/5snkgq

===================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIwassAAoJEPPvtS8+XvsGhDAIAMYf07Ckrzeeq63PIs0f0frS
h1HKk4kOl/JyNlwNTuq56sutWENklxA6S0kQJuO5IqRY6vvhx4qhJ3KXcWy1ksxI
iHnpfJY2nboAOSMAP3IUZq18vuelYfPUbAnBDUEqM7AE1ZSZpOCgVIDN22N91KVL
SC62d8W8OJeNTL364jsvpJIFs3P+9z4JpL1WNMtn9B0JbNmtxFrjPqRWwPLJ9p95
u1OMhXnqVCOYQlXhOsDSmetLpfg2RJalMvdeGUDr1x8/pCn2yGjOTUhdqak8wkWl
ceAyfdlAWcQbDFMnhu/VYaii/T7VFlNeT1NX1s8FBlJ8V0JG5hcIitax67nCWuU=
=TYuI
-----END PGP SIGNATURE-----

From rbrtryn at gmail.com  Fri Sep  5 15:01:59 2008
From: rbrtryn at gmail.com (Robert Ryan)
Date: Fri, 05 Sep 2008 16:01:59 -0600
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
In-Reply-To: <48C195D2.8080500@gmail.com>
References: <48C0F201.3020308@gmail.com>	<48C0F3DA.3010000@sixdemonbag.org>	<48C0F531.8040306@sixdemonbag.org>	<48C0F88D.1030609@gmail.com>	<48C118BA.7080402@bellsouth.net>
	<48C195D2.8080500@gmail.com>
Message-ID: <48C1AC57.1020800@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 9/5/2008 2:25 PM, Faramir wrote:
> Well, I want to "fix" the Ogamecompactor addon for FireFox, it can be
> found at http://ogamecompactor.mozdev.org/

Try contacting the project owner directly at:

eldaimon at gmail.com

or the only listed active developer at:

michaell at teleline.es
- --
Robert Ryan

I prefer encrypted email :)
My PGP keys: http://tinyurl.com/5snkgq

===================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIwaxXAAoJEPPvtS8+XvsGn2IH/0rjZgobGyg48YLe+65GVPkG
19cE/ugU3b24tnC7Kwi6/enWb/lr0uteOzu0wMi8rD5o3T5YpIddWLW20Ed/KrEj
jk1ATULnENZm11JocxqcPt3f4sUtb3ZmncVj9BQFB5Sq+OcZmegM+D23Iaw4WokK
FBYNVHe5/FQX7ZLbDCY1lc8LYQgoT3taWii/bo6B+wwqrpiLWV8IsjRhbByQGR9h
HZZU+C55xqw/x+d2IpZwt7fEoPZx+JhKgUWApcp4k4NfQRUj7MBAP9+T4m3635/j
uCBA4p70dTL8GAhhBCc77GeoWP0Kx0F+YBhVM8yzgGL204qGDc7kaE6jz1f6KGc=
=KHJ2
-----END PGP SIGNATURE-----

From faramir.cl at gmail.com  Fri Sep  5 20:16:34 2008
From: faramir.cl at gmail.com (Faramir)
Date: Fri, 05 Sep 2008 23:16:34 -0400
Subject: [Enigmail] Off Topic: Where do I start learning about XPI?
In-Reply-To: <48C1AB2C.8000603@gmail.com>
References: <48C0F201.3020308@gmail.com>	<48C0F3DA.3010000@sixdemonbag.org>	<48C0F531.8040306@sixdemonbag.org>	<48C0F88D.1030609@gmail.com>	<48C118BA.7080402@bellsouth.net>	<48C195D2.8080500@gmail.com>
	<48C1AB2C.8000603@gmail.com>
Message-ID: <48C1F612.9040903@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Robert Ryan escribi?:
> On 9/5/2008 2:25 PM, Faramir wrote:
>> Well, I want to "fix" the Ogamecompactor addon for FireFox, it can be

> Sounds like "vaporware"; i.e. an abandoned project. You might try one of
> the other extensions available here:
> 
> https://addons.mozilla.org/en-US/firefox/search?q=ogame&cat=all

  Unfortunately, it seems there is no replacement for this one, there
are other tools for other purposes (and I use some of these too).

> Unless you are well versed in javascript, trying to fix this yourself is
> going to be an exercise in frustration.

  And it will require a large stock of coffee and aspirins. Still, at
least I want to take a look at it... maybe it is something easy to fix.

  I will also follow your advice and I will send a couple of email
messages... maybe the developer forgot to join the mailing list...

 Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIwfYSAAoJEMV4f6PvczxAt+sH/RPO9lf9zmKvKFR7+Prlt609
2coPMminTIKn8Jp/uVCPpXiw5VyZrAB9wa2YIEOCcg2D87Lg1DpS15IMNLPB/zAV
DWWLe4CIXaT+dCgI4+vOrTJwThZWgJWwcOWDwYRqOO8eegP3yT8tFLEBvpGuoD4z
So3xVHdtXgM7YtVClwdoFj9V+oRro+7Knw3jyLuVkr/+cElpB/4JpVzi9dDgxMJL
4jH/foOJnTHBnEmOECcYmTtYU8rum8aJ8WZ9DVqKap3fI8cYniCSABkRZz1FrdrL
xmMhyMkdy/gGRue8MOKjKt7iZPKH6sTGsYNGxM8pT0jhilRdCqtd4PCM/Q5LvN0=
=QBHu
-----END PGP SIGNATURE-----

From tobi2304 at gmx.net  Sat Sep  6 11:52:39 2008
From: tobi2304 at gmx.net (Tobias Hofmann)
Date: Sat, 06 Sep 2008 20:52:39 +0200
Subject: [Enigmail] Hello, signature test
Message-ID: <48C2D177.8030709@gmx.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Hi there, whoever you are  ;)

 
 My name is Tobias and I'm 17 years old, living in southern Germany. I
attend school and elected IT as subject in school, too.

 I often heard about the dangers in Internet and therefore I decided
to proof my identity using Enigmail and just created a new signature
according to the QuickStart-Instruction. Of course I'd like to know,
whether everything works properly.

 Therefore I request you to answer this mail or what else is to do.

Thanks in forward and greetings,

Tobias.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iEYEARECAAYFAkjC0XcACgkQRDA6munB4Jfw9wCfUzEsNq0LkZJR1fR/td33788v
ztoAnAp4XQeOFEfdRUIXoIxVBkRbbMHd
=1Z0i
-----END PGP SIGNATURE-----


From jmoore3rd at bellsouth.net  Sat Sep  6 11:55:58 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Sat, 06 Sep 2008 14:55:58 -0400
Subject: [Enigmail] Hello, signature test
In-Reply-To: <48C2D177.8030709@gmx.net>
References: <48C2D177.8030709@gmx.net>
Message-ID: <48C2D23E.5010008@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Tobias Hofmann wrote:

>  I often heard about the dangers in Internet and therefore I decided
> to proof my identity using Enigmail and just created a new signature
> according to the QuickStart-Instruction. Of course I'd like to know,
> whether everything works properly.

I was Unable to locate Your Key on Keyserver(s).  Have You Uploaded it
yet as suggested in the Quick Start Guide?  If You have it may not have
propagated yet.  I shall check again later.

HTH

JOHN ;)
Timestamp: Saturday 06 Sep 2008, 14:55  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIwtI7AAoJEBCGy9eAtCsPOswH/iwp9lReecpk++Kb30czk93q
KAF8Lk56a1BwuPq141FuF0UvP8mupyrp7l/il0wjkNhlm4xNtiRk9oAi8PlIwCgt
VHyBUNRSq0gg9QH08omJmhoLWdcYu02+bwLMUFH+dh9cM21RWgO3OTNsIn3+KN0/
Ci3hsuyP4oUkgOBpDAbXs6F6ADIEx0pGNQuciEYOqtYmXtPF1quO5Ng0ryPfEsXQ
LbHDnhkUt9HWEcIQp8sfJ9smF/ee8JxAhq3VM4oBBSDeBgRr8GX7udGoRhSpcLaF
F/g+qjdumWFpt8EWVk0HNnbk4kUzKc91X1hmu1Jh0Edk6guWUqtq7HyqUh//eig=
=WPHo
-----END PGP SIGNATURE-----

From jmoore3rd at bellsouth.net  Sat Sep  6 11:57:44 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Sat, 06 Sep 2008 14:57:44 -0400
Subject: [Enigmail] Hello, signature test
In-Reply-To: <48C2D177.8030709@gmx.net>
References: <48C2D177.8030709@gmx.net>
Message-ID: <48C2D2A8.2090100@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Tobias Hofmann wrote:

> whether everything works properly.

Everything working now:

UNTRUSTED Good signature from Tobias Hofmann <tobi2304 at gmx.net>
Key ID: 0xE9C1E097 / Signed on: 9/6/2008 2:52 PM
Key fingerprint: 5CCE 886F 54E6 21C3 759D 68BD 4430 3A9A E9C1 E097

JOHN ;)
Timestamp: Saturday 06 Sep 2008, 14:57  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIwtKmAAoJEBCGy9eAtCsPbhAIAIlWheLB555bpQ7cFmJfOycy
szO+iqeV1FBS1HRrMgwmLlYHcfh9xQ1jXFm5g8fYNX14B8VHCTe0rwaDlh92zay+
RxnH5VDzfxYow7E4WdXgYPYQ1GuOaXmlAA4jzKnunj2misjeORXt4ex8DrmTpkfL
jZWPRGA9vUtsRQLV7M8suFRgRbusmBZGxY9y2sgs3+uFNKgV1xL8+rX0+FxGePKs
gcxifenTGoNoUipp29siCPLn+OGZrkKnirz03Lwsfyc19nQGdLcAgGzUcSVwZosc
qQ5/94ADEcHrDhPlM9yuavUXDqdtNvP29jNrA7JPF7C17U27sa5HbDbZHj4p43Q=
=CE98
-----END PGP SIGNATURE-----

From kuttruff at gmail.com  Sat Sep  6 15:31:16 2008
From: kuttruff at gmail.com (Christopher Kuttruff)
Date: Sat, 06 Sep 2008 15:31:16 -0700
Subject: [Enigmail] Hey all; quick question
Message-ID: <48C304B4.4040001@gmail.com>

Firstly, I would just like to thank everyone on this list.  I've gotten 
some incredible help from individuals on this enigmail list, which has 
been a refreshing break from the myriad wiki tabs and lengthy, dense 
(albeit thorough and well-constructed) documentation. It's invaluable to 
be able to get such immediate help.

Anyways, I had a quick question, because it's a problem that's been 
plaguing me.

I've really started to appreciate what enigmail and gpg have to offer.

But I'm having an issue that I'd like to get people's feedback on. The 
default of sending plain text (which I know is necessary for encryption) 
auto-wraps thunderbird text at I think the default is 72 chars or so. 
Well, when this flow is broken, people who copy paste text I send them 
in emails (which is frequent cause I work as an editor at a news site) 
have hard wrapped text, which presents a problem during the proofing and 
production process.

Now I generally work from a separate account, but Tbird seems to have 
global settings and my two accounts get lumped in with the same 
auto-wrap problem.

Does anyone have any advice for me here.  I would love to resolve this 
by either changing the paragraph flow settings somehow or separating my 
Tbird accounts so I can use my gmail for all encrypted email communication.

And one other really quick question... is there a way to share private 
id info with gnupg so that the same authentication can be used on my 
laptop as my desktop?  or is this not plausible?  Do I have to have a 
separate public/private key set since it's a diff comp?

Thanks everyone,
Chris

From rjh at sixdemonbag.org  Sat Sep  6 16:06:11 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Sat, 06 Sep 2008 18:06:11 -0500
Subject: [Enigmail] Hello, signature test
In-Reply-To: <48C2D177.8030709@gmx.net>
References: <48C2D177.8030709@gmx.net>
Message-ID: <48C30CE3.7090808@sixdemonbag.org>

Tobias Hofmann wrote:
>  My name is Tobias and I'm 17 years old, living in southern Germany. I
> attend school and elected IT as subject in school, too.

Welcome!  You'll find there are a fair number of German speakers on this
list.  Patrick and Olav, for instance -- years ago I was an exchange
student in Germany and can still read it pretty well, although my
written German is awful.

Please don't misunderstand me: your English is excellent, and we prefer
English be used on this list.  However, if you get confused and need to
explain something /auf Deutsch/, we can probably help.

> I often heard about the dangers in Internet and therefore I decided
> to proof my identity using Enigmail and just created a new signature
> according to the QuickStart-Instruction. Of course I'd like to know,
> whether everything works properly.

Everything looks fine here.  :)


From jmoore3rd at bellsouth.net  Sat Sep  6 16:10:21 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Sat, 06 Sep 2008 19:10:21 -0400
Subject: [Enigmail] Hello, signature test
In-Reply-To: <48C2DB9F.1080801@gmx.net>
References: <48C2D177.8030709@gmx.net> <48C2D2A8.2090100@bellsouth.net>
	<48C2DB9F.1080801@gmx.net>
Message-ID: <48C30DDD.2060300@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Tobias Hofmann wrote:

>  Confirm, that the status "Untrusted" depends from your mail program and
> has nothing to do with my signature? There are no failures or problems?

All 'Untrusted' means is that I haven't conferred any 'Trust' on Your
Key because, well, I don't trust You just because You have a Key and a
properly configured GnuPG configuration.  Were I to place a Local
Signature on Your Key or, should Your Key contain several Signatures
from folks I have already 'Trusted' then it would not show 'Untrusted'.

This status is also indicated in Enigmail by the color of the Enigmail
Bar.  Blue = Untrusted Key; Green = Trusted Key/Recipient.

JOHN ;)
Timestamp: Saturday 06 Sep 2008, 19:10  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIww3cAAoJEBCGy9eAtCsP+vkH/j+txh6uCDXTto/pP2Eh6Wkh
fDXSwBtiGeUX/cE5We2pnzSfVbm8pUPt68e6ConsGaUAe19MhBNbjvWP2gaiAuSd
2FQIGfP89ZTAOmWLtUO0gJHS6TcF+S47SSft3R/yxnhJx9VgDB4OrMJmcyMnkYlJ
C2Go63mHdOOsmoMLth0qEX0ybHIHqVYL6KqfuHFEqsF6Nx2S0XEO8pi5xhSoKIdy
jd86RPIF6zDhmvamE37OGcj9V5yUyEvVIY/3aVJ6nY9M3J9/larH4YELL08BIX63
4UJ0Q7lwgwejqyLG1EPo5w3mTFVGZRE6C0ZjXtzviDXS3Zz58n11IEGguomCD0A=
=n5DX
-----END PGP SIGNATURE-----

From jmoore3rd at bellsouth.net  Sat Sep  6 16:25:05 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Sat, 06 Sep 2008 19:25:05 -0400
Subject: [Enigmail] Hey all; quick question
In-Reply-To: <48C304B4.4040001@gmail.com>
References: <48C304B4.4040001@gmail.com>
Message-ID: <48C31151.2040408@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Christopher Kuttruff wrote:
> Firstly, I would just like to thank everyone on this list. 

You're most Welcome.

> Now I generally work from a separate account, but Tbird seems to have
> global settings and my two accounts get lumped in with the same
> auto-wrap problem.

You may Set Thunderbird to Compose in either Plaintext or HTML.  In HTML
the Word Wrap settings will not be enabled.  Whichever way You Set
Thunderbird You may easily switch between the 2 on-the-fly by holding
down the 'Shift' Key while clicking 'Write' or 'Reply'.

> And one other really quick question... is there a way to share private
> id info with gnupg so that the same authentication can be used on my
> laptop as my desktop?  or is this not plausible?  Do I have to have a
> separate public/private key set since it's a diff comp?

Just Copy Your secring.gpg, pubring.gpg & trust.db Files from one
installation to the other.

JOHN ;)
Timestamp: Saturday 06 Sep 2008, 19:24  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIwxFPAAoJEBCGy9eAtCsP9NwH/0c7clfiiC42kDoTYC9w7U1/
Jplfp6mXbXkS0UIopd6YiMGcRWdb5MXLxrcc/RPub74Kg74Mq1xpTxOs78oTtugL
8HdvjpywZq5rIvx7JTfMLk/YGwRIX4ID1r6OJw55Hjn6b324lfl8j9mEv/hR2Ho6
89brOGQNz4aRBbhX9pRWm1V2wHsqF2z+MsANPUTAyD81N+/KTLgUWTPsA3U0HM5X
CnhI6uuVJj35SB9hx6S6YUjmh8i36a5rQp+VD6UI9ShFDkfkSmGBLWo4R2FcYtjD
13/MmDmhLhaQzyE6VMQ+iZWBjmaNUijm7xKOOkRAHWuVZ/mEXTikdEe+YDe4wK4=
=QbSA
-----END PGP SIGNATURE-----

From rjh at sixdemonbag.org  Sat Sep  6 16:25:48 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Sat, 06 Sep 2008 18:25:48 -0500
Subject: [Enigmail] Hello, signature test
In-Reply-To: <48C30DDD.2060300@bellsouth.net>
References: <48C2D177.8030709@gmx.net>
	<48C2D2A8.2090100@bellsouth.net>	<48C2DB9F.1080801@gmx.net>
	<48C30DDD.2060300@bellsouth.net>
Message-ID: <48C3117C.7030501@sixdemonbag.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

John W. Moore III wrote:
> All 'Untrusted' means is that I haven't conferred any 'Trust' on Your
> Key because, well, I don't trust You just because You have a Key and a
> properly configured GnuPG configuration.

John is right -- nothing I say here is going to disagree with him.  It's
just going to explain him.

Signatures are the most subtle and most error-prone part of GnuPG.  For
a signature to be meaningful, the following has to take place:

1.  The signature must be mathematically correct
2.  You must know the signing key really belongs to such a person
3.  You must trust the person the signing key belongs to

All GnuPG can do for you is step 1.  Steps 2 and 3 are mostly up to you.

As an example, imagine that you received a signed email, and the name on
the key was "George W. Bush <w at whitehouse.gov>".  Would you believe it
came from the President, or would you say "hey, anyone can make a key
and claim it belongs to the President.  I need to do some checking"?

This email is signed.  The name on the key is "Robert J. Hansen".
Should you believe that I'm really Robert J. Hansen?

The way we get around this is verify our keys.  If you were to meet me
in person, if I were to let you see my passport, if I were to tell you
the cryptographic hash of my key, would you then believe your copy of my
key really belonged to me?  Probably so -- we would then say you have
verified my key.

Finally, let's say that after you meet me, you decide that (for whatever
reason!) you shouldn't trust me.  If you don't trust a person, then
there's no reason for you to trust a signed message from that person.



... If you get a message which has a correct signature from a key you
have verified as belonging to someone that you trust, then you may rely
on that signature.

Anything else, and you really can't.

This is why I so rarely sign my messages to mailing lists.  Most of the
people on the list do not know me, have not verified my key or my
identity, and so the signature is useless to them.


-----BEGIN PGP SIGNATURE-----
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iFYEAREIAAYFAkjDEXwACgkQI4Br5da5jhCp9wDfeOUI+M+z40TZ5hHV3484x1gB
YZoggBf+mtutagDffNo/jam2yVXnl9JRa/px7oNMeT7bfBGXDlVKt4kBHAQBAQgA
BgUCSMMRfAAKCRC3APSC/q+BCZWDB/0aBS9eX9DHkRwQmBMaRBHRdqKTFXhsDFB7
YrTlF8CrtuYDSqcEpwIATE4bI3Dbl6Gs1eSKSGJ9tdZ98J+FkKcn1zGOFAQBIv48
2ZBVg9RSbkbdkdiBwRKhKWlkxdKqpBFDoxlUbFro41/g9kCBVL0Jk/LCz83LOBqP
C35vMtuvYLInYzbeW4jfg0hu/TRSiM2zs0pI5S7XG8TMARc/nlSxfFlYPhusjLb3
yNycePLlAOnyNo2HvhaQLJ5ccmvGMR9RJycNWaZrLYhrSp1OS7s6MZGXsk6PM7sQ
Xb5FuApR+Om1UcMnGMzB2f637sSqLp0FW9tGjImFxgC2efUpStjy
=Ejbk
-----END PGP SIGNATURE-----

From John at Mozilla-Enigmail.org  Sat Sep  6 16:50:34 2008
From: John at Mozilla-Enigmail.org (John Clizbe)
Date: Sat, 06 Sep 2008 18:50:34 -0500
Subject: [Enigmail] Hey all; quick question
In-Reply-To: <48C31151.2040408@bellsouth.net>
References: <48C304B4.4040001@gmail.com> <48C31151.2040408@bellsouth.net>
Message-ID: <48C3174A.7070609@Mozilla-Enigmail.org>

John W. Moore III wrote:
> Just Copy Your secring.gpg, pubring.gpg & trust.db Files from one
> installation to the other.

I think you mean trustdb.gpg

-- 
John P. Clizbe                      Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net  or
     mailto:pgp-public-keys at gingerbear.net?subject=HELP

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 677 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080906/2eb9c587/attachment.bin>

From jmoore3rd at bellsouth.net  Sat Sep  6 16:57:59 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Sat, 06 Sep 2008 19:57:59 -0400
Subject: [Enigmail] Hey all; quick question
In-Reply-To: <48C3174A.7070609@Mozilla-Enigmail.org>
References: <48C304B4.4040001@gmail.com> <48C31151.2040408@bellsouth.net>
	<48C3174A.7070609@Mozilla-Enigmail.org>
Message-ID: <48C31907.8030602@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

John Clizbe wrote:
> John W. Moore III wrote:
>> Just Copy Your secring.gpg, pubring.gpg & trust.db Files from one
>> installation to the other.
> 
> I think you mean trustdb.gpg

Yeah, but after 3 hours of watching College Football I plead 'slight
impairment'.  :-D

JOHN ;)
Timestamp: Saturday 06 Sep 2008, 19:57  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIwxkFAAoJEBCGy9eAtCsP4wAIAIVpogNhU2RCzehnqVNz+G3B
tJmTskK4UFU12Xa06pHxcQFjeFXhLf7k/STlGLccz/CJTm4+4pTmySDFrvfkje9g
cezU9ME9/eu+peT8gi+xDc4EaHRIoCGhhzLRiLaoNWl3kGTlORBD0unWJ2FbERnh
COaHvYVts8TDUdDo37ql4J56TUNLCwIL/OoPdpde/0fXhbh3M1AkPb2RW/SdK+YZ
qT4olRZk30TPVBisSk2oVbcsU1xBuPqoQ5BfTWm3r5YJhYAlenheL4HjGDLl8Y7i
fAeawOGW5Hwjk0Ue0ySLKOzemVAgSenPY+A/vwthE/LglyJRcnv1naidPBj2/9E=
=HtRC
-----END PGP SIGNATURE-----

From John at Mozilla-Enigmail.org  Sat Sep  6 17:16:43 2008
From: John at Mozilla-Enigmail.org (John Clizbe)
Date: Sat, 06 Sep 2008 19:16:43 -0500
Subject: [Enigmail] Hey all; quick question
In-Reply-To: <48C304B4.4040001@gmail.com>
References: <48C304B4.4040001@gmail.com>
Message-ID: <48C31D6B.2070609@Mozilla-Enigmail.org>

Christopher Kuttruff wrote:
> But I'm having an issue that I'd like to get people's feedback on. The 
> default of sending plain text (which I know is necessary for encryption) 
> auto-wraps thunderbird text at I think the default is 72 chars or so. 
> Well, when this flow is broken, people who copy paste text I send them 
> in emails (which is frequent cause I work as an editor at a news site) 
> have hard wrapped text, which presents a problem during the proofing and 
> production process.
> 
> Now I generally work from a separate account, but Tbird seems to have 
> global settings and my two accounts get lumped in with the same 
> auto-wrap problem.
> 
> Does anyone have any advice for me here.  I would love to resolve this 
> by either changing the paragraph flow settings somehow or separating my 
> Tbird accounts so I can use my gmail for all encrypted email communication.

It appears you need to disable format=flowed in your email client

You may disable format=flawed by including the two lines below in a file named
user.js in your Thunderbird profile directory

user_pref("mailnews.display.disable_format_flowed_support", true);
user_pref("mailnews.send_plaintext_flowed", false);

Or you may use the Config Editor under Thunderbird's Advanced preferences tab.

-- 
John P. Clizbe                      Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net  or
     mailto:pgp-public-keys at gingerbear.net?subject=HELP

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 677 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080906/67666262/attachment.bin>

From ldc at lrcressy.com  Sun Sep  7 08:53:44 2008
From: ldc at lrcressy.com (LeRoy Cressy)
Date: Sun, 07 Sep 2008 11:53:44 -0400
Subject: [Enigmail] Hello, signature test
In-Reply-To: <48C3117C.7030501@sixdemonbag.org>
References: <48C2D177.8030709@gmx.net>	<48C2D2A8.2090100@bellsouth.net>	<48C2DB9F.1080801@gmx.net>	<48C30DDD.2060300@bellsouth.net>
	<48C3117C.7030501@sixdemonbag.org>
Message-ID: <48C3F908.9050600@lrcressy.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Robert J. Hansen wrote:
> John W. Moore III wrote:
>> All 'Untrusted' means is that I haven't conferred any 'Trust' on Your
>> Key because, well, I don't trust You just because You have a Key and a
>> properly configured GnuPG configuration.
> 
> John is right -- nothing I say here is going to disagree with him.  It's
> just going to explain him.
> 
> Signatures are the most subtle and most error-prone part of GnuPG.  For
> a signature to be meaningful, the following has to take place:
> 
> 1.  The signature must be mathematically correct
> 2.  You must know the signing key really belongs to such a person
> 3.  You must trust the person the signing key belongs to
> 
> All GnuPG can do for you is step 1.  Steps 2 and 3 are mostly up to you.
> 
> As an example, imagine that you received a signed email, and the name on
> the key was "George W. Bush <w at whitehouse.gov>".  Would you believe it
> came from the President, or would you say "hey, anyone can make a key
> and claim it belongs to the President.  I need to do some checking"?
> 
> This email is signed.  The name on the key is "Robert J. Hansen".
> Should you believe that I'm really Robert J. Hansen?
> 
> The way we get around this is verify our keys.  If you were to meet me
> in person, if I were to let you see my passport, if I were to tell you
> the cryptographic hash of my key, would you then believe your copy of my
> key really belonged to me?  Probably so -- we would then say you have
> verified my key.

All of the above leads to key signing.
Some people sign every key that they have and that is not such a good idea.

Key signing happens when you meet an individual or at a computer group
that knows and uses GnuPG or OpenPGP.  You exchange public keys after
verifying that the person is who they say are by examining their
passport, drivers license and etc.  You can use the gpg-key2ps located
in the signing-party package to print out your keyID, fingerprint, sub
keys and related info in the following format.

pub 1024 D/8501AFEA 2003-01-03 LeRoy D. Cressy (ldc) <ldc at lrcressy.com>
Key fingerprint =  62DE 6CAB CEE1 B1B3 359A  81D8 3FEF E6DA 8501 AFEA
uid           LeRoy D. Cressy (ldc) <leroy at lrcressy.com>
sub 2048 g/B16A47D6  2003-01-03
sub 2048 g/FBF1253E  2004-02-08  [revoked]
sub 4096 R/86B08B2A  2005-08-07
sub 4096 R/F4988EE7  2005-08-13  [revoked]
sub 2048 R/758866DB  2008-08-21
sub 4096 R/076CB5B6  2008-08-21

After you get home from your key signing party with the others keys that
you have agreed to sign you need to fetch the other person's key from a
keyserver using

gpg --recv-keys 0x12345678

Now you need to edit the person's key that you are signing with

gpg --edit-key 0x12345678
	uid 1  (Make sure that you select all uid's that are on the key)
	sign   (gpg will ask you for your pass phrase and how much you
		trust the person in signing other keys.)

gpg -a --export 0x12345678 > filename.asc

email the signed key (filename.asc) to the keys owner. (You should not
post the signed key to a keyserver)

When you receive your own key from someone who signed your key you need
to import the signed key to your keyring.

gpg --import yourkey.asc

GnuPG will add only the changes to your key.

After you have imported all of your returned signed public keys then you
should send your key to your favorite key server.

gpg --send-keys 0x12345678

After you have signed someones key when you receive an email from that
person you will see "good signature from" instead of "UNTRUSTED good
signature from"

The more people that sign your key will make your key more trustworthy
to others.  For instance, if you know Jack, and Jack has signed Jill's
key, then you might have a greater degree of trust when you receive a
message from Jill though you have not signed her key.

The total concept of the web of trust is a little complex for a new user
of GnuPG, but when you think about the above example, you can see how it
works.

I hope that this helps :-)


- --
 Rev. LeRoy D. Cressy  mailto:leroy at lrcressy.com   /\_/\
                       http://lrcressy.com        ( o.o )
                       Phone:  215-535-4037        > ^ <

gpg fingerprint:  62DE 6CAB CEE1 B1B3 359A  81D8 3FEF E6DA 8501 AFEA

For info on enigmail:    http://lrcressy.com/linux/mozilla.pdf
For info on gpg:         http://www.gnupg.org/

Jesus saith unto him, I am the way, the truth, and the life:
no man cometh unto the Father, but by me. (John 14:6)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEVAwUBSMP5CKuxGqN1iGbbAQhgdAf/WcGuLQD7HCUazfvnS6nq5YPTyG4E689j
WYdNyfoJzDepDiyNl1WE8acnYLMFpdDy33oCOYw0db1Ctxu1npy6ITaYlHRAK1NV
0GjniDllv15HtXuGkdJl8MhzFX03RmuF0sSQtTa1W+LFifsUSZegKoAqmNc7qt1H
RU9jJGUQZ4PqQodvT2+Wf2APw2Lwsq3nwUWs+wGMb6hmqIcWqwEp4208TLsJLB4q
tEERONyg8rRsS1hKk7lkzCPQTs41y2LkaJ4izYVCy1KzEuuJ9ViZzcIihxXhSQgd
HdDqhmO2/mK0vCFFY7hy3GwXLm9Dh/iNX3otglBamMFVujzb0C8KpQ==
=ndqk
-----END PGP SIGNATURE-----

From faramir.cl at gmail.com  Sun Sep  7 14:11:02 2008
From: faramir.cl at gmail.com (Faramir)
Date: Sun, 07 Sep 2008 17:11:02 -0400
Subject: [Enigmail] Hello, signature test
In-Reply-To: <48C3F908.9050600@lrcressy.com>
References: <48C2D177.8030709@gmx.net>	<48C2D2A8.2090100@bellsouth.net>	<48C2DB9F.1080801@gmx.net>	<48C30DDD.2060300@bellsouth.net>	<48C3117C.7030501@sixdemonbag.org>
	<48C3F908.9050600@lrcressy.com>
Message-ID: <48C44366.5090009@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

LeRoy Cressy escribi?:
...
> email the signed key (filename.asc) to the keys owner. (You should not
> post the signed key to a keyserver)

  After reading some manuals, I was still unaware about that rule, and I
am afraid I have uploaded some signed public keys to keyservers. While I
don't do it anymore, maybe we should propose this rule to be added to
the manuals of handbooks available at most well known GPG related
sites... like the GNUpg site...

  Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIxENmAAoJEMV4f6PvczxA8soH/1WNFS7JlNGv/ZQapJR5oSMr
p9yDnYfF414UnrGxI+ajbCW0xI16Z/G/iNFmSYpuNH0E8/QSagrGlx5d2Tp9Z14t
5n1cXXozw6ipBNHQP014PJUaaBx+DdkwYYAK5hgGr4UV8Jz1DhT6eLcnc7s7Nbti
qjg+f1LReIAc8wXRALwZUHjFBvuWFb1C77lhuaqWvif/inA483chRUG/SuaMNbBD
HScgkAaxdImfTvWoLNug3ztPI6+XXDtvH5RNGbUlQOCKVpnS9t314f2Gz/XOrxvK
1idpMVBHLQQvGCD+/dG/5kb+RUo+bFsi7kPLiPieg7HVeu+2mCDN6q0LOiHDHAA=
=DfP8
-----END PGP SIGNATURE-----

From rjh at sixdemonbag.org  Sun Sep  7 14:20:56 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Sun, 07 Sep 2008 16:20:56 -0500
Subject: [Enigmail] Hello, signature test
In-Reply-To: <48C3F908.9050600@lrcressy.com>
References: <48C2D177.8030709@gmx.net>	<48C2D2A8.2090100@bellsouth.net>	<48C2DB9F.1080801@gmx.net>	<48C30DDD.2060300@bellsouth.net>	<48C3117C.7030501@sixdemonbag.org>
	<48C3F908.9050600@lrcressy.com>
Message-ID: <48C445B8.9060000@sixdemonbag.org>

LeRoy Cressy wrote:
> (You should not post the signed key to a keyserver)

This is more a personal preference issue than a hard and fast rule.
Some people do it, some don't.

Given that the key is _already_ on the key server, it's hard to imagine
how putting a signature on that key and sending it to the key server
exposes the key owner to any more spam than he or she would otherwise get.

When I do key signings, I upload to the servers unless people
specifically ask me not to.


From rjh at sixdemonbag.org  Sun Sep  7 14:21:30 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Sun, 07 Sep 2008 16:21:30 -0500
Subject: [Enigmail] Hello, signature test
In-Reply-To: <48C44366.5090009@gmail.com>
References: <48C2D177.8030709@gmx.net>	<48C2D2A8.2090100@bellsouth.net>	<48C2DB9F.1080801@gmx.net>	<48C30DDD.2060300@bellsouth.net>	<48C3117C.7030501@sixdemonbag.org>	<48C3F908.9050600@lrcressy.com>
	<48C44366.5090009@gmail.com>
Message-ID: <48C445DA.9040100@sixdemonbag.org>

Faramir wrote:
> After reading some manuals, I was still unaware about that rule, and
> I am afraid I have uploaded some signed public keys to keyservers.

You haven't done anything wrong, don't worry.



From gviscardi at gmail.com  Sun Sep  7 23:42:44 2008
From: gviscardi at gmail.com (Gregory L. Viscardi)
Date: Mon, 08 Sep 2008 02:42:44 -0400
Subject: [Enigmail] Testing PGP Signature
Message-ID: <48C4C964.8030204@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

This is a test of my first GnuPGP signature and using Enigmail. If this
were an actual signed email it would contain useful and/or engaging
content. Again, this is just a test. Thank you and goodnight.

- --
Gregory L. Viscardi
http://hard-wire.pocketwatchmafia.net
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjEyWQACgkQVlI5ETwBMTHwLgCdH3fnMe5Iu7Cn2rwr0u1rIKsc
AdIAmQFu5CEQVOqjmsT2uIhTbo0TFgsy
=T1Uu
-----END PGP SIGNATURE-----

From sean at rima.ws  Mon Sep  8 00:07:13 2008
From: sean at rima.ws (Sean Rima)
Date: Mon, 08 Sep 2008 08:07:13 +0100
Subject: [Enigmail] Testing PGP Signature
In-Reply-To: <48C4C964.8030204@gmail.com>
References: <48C4C964.8030204@gmail.com>
Message-ID: <48C4CF21.40207@rima.ws>

Gregory L. Viscardi wrote:
> This is a test of my first GnuPGP signature and using Enigmail. If this
> were an actual signed email it would contain useful and/or engaging
> content. Again, this is just a test. Thank you and goodnight.
> 


Looks good here

OpenPGP Security Info

Good signature from Gregory L. Viscardi <gviscardi at gmail.com>
Key ID: 0x3C013131 / Signed on: 08/09/2008 07:42
Key fingerprint: 6BD4 F3DA 0826 8281 70CC 8022 5652 3911 3C01 3131


Sean
-- 
Sean
Thawte, GSWoT and CaCert WOT Assurer

I believe that every human has a finite number of
heartbeats. I don't intend to waste any of mine
running around doing exercises. - Neil Armstrong

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 318 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080908/527f9880/attachment.bin>

From John at Mozilla-Enigmail.org  Mon Sep  8 00:44:10 2008
From: John at Mozilla-Enigmail.org (John Clizbe)
Date: Mon, 08 Sep 2008 02:44:10 -0500
Subject: [Enigmail] Testing PGP Signature
In-Reply-To: <48C4C964.8030204@gmail.com>
References: <48C4C964.8030204@gmail.com>
Message-ID: <48C4D7CA.30101@Mozilla-Enigmail.org>

Gregory L. Viscardi wrote:
> This is a test of my first GnuPGP signature and using Enigmail. If this
> were an actual signed email it would contain useful and/or engaging
> content. Again, this is just a test. Thank you and goodnight.

OpenPGP Security Info

UNTRUSTED Good signature from Gregory L. Viscardi <gviscardi at gmail.com>
Key ID: 0x3C013131 / Signed on: 9/8/2008 1:42 AM
Key fingerprint: 6BD4 F3DA 0826 8281 70CC 8022 5652 3911 3C01 3131


And you made me chuckle. Well done.

-- 
John P. Clizbe                      Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net  or
     mailto:pgp-public-keys at gingerbear.net?subject=HELP

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 677 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080908/70669df2/attachment.bin>

From jmoore3rd at bellsouth.net  Mon Sep  8 01:29:03 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Mon, 08 Sep 2008 04:29:03 -0400
Subject: [Enigmail] Testing PGP Signature
In-Reply-To: <48C4C964.8030204@gmail.com>
References: <48C4C964.8030204@gmail.com>
Message-ID: <48C4E24F.1040004@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Gregory L. Viscardi wrote:
> This is a test of my first GnuPGP signature and using Enigmail. If this
> were an actual signed email it would contain useful and/or engaging
> content. Again, this is just a test. Thank you and goodnight.

Looking Good:

UNTRUSTED Good signature from Gregory L. Viscardi <gviscardi at gmail.com>
Key ID: 0x3C013131 / Signed on: 9/8/2008 2:42 AM
Key fingerprint: 6BD4 F3DA 0826 8281 70CC 8022 5652 3911 3C01 3131

JOHN ;)
Timestamp: Monday 08 Sep 2008, 04:28  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIxOJOAAoJEBCGy9eAtCsPHtoIAJVzFi3jEsM+CsCb+BPVBKzK
rhy+/uQd5jJAZhKyX5XryC4yrzuCFD152BMf020my1/RF0XlU2CuprRlAlP8LM9D
0reRyTLq0O8Pu8h1YudGfY6a2lCaqfwAv3CViUEcog0ynXdeQzPgxAqFmeADIDsZ
GE0pYyde/F6abnFCkkMTZjhZNJZ5MIA5aTw78AyeyAqQ65sfunoKt7r0WMxQ/B2V
D24bVK/XjxU4/Os63mn61U4xlHNI2NLvuxbpjSv8eVoSokQYpSxZFuQDM+i4COEi
vtnr6AJprwk1CU5yeLz6lNn4nNDEKK9LJSw37YRqZap5gfBR60YJ1S2LHx2LGBI=
=lf8h
-----END PGP SIGNATURE-----

From rasmith1959 at yahoo.com  Mon Sep  8 05:44:57 2008
From: rasmith1959 at yahoo.com (Roy Smith)
Date: Mon, 08 Sep 2008 07:44:57 -0500
Subject: [Enigmail] Testing PGP Signature
In-Reply-To: <48C4C964.8030204@gmail.com>
References: <48C4C964.8030204@gmail.com>
Message-ID: <48C51E49.8030302@yahoo.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Gregory L. Viscardi wrote:
> This is a test of my first GnuPGP signature and using Enigmail. If this
> were an actual signed email it would contain useful and/or engaging
> content. Again, this is just a test. Thank you and goodnight.
>

OpenPGP Security Info

UNTRUSTED Good signature from Gregory L. Viscardi <gviscardi at gmail.com>
Key ID: 0x3C013131 / Signed on: 9/8/2008 1:42 AM
Key fingerprint: 6BD4 F3DA 0826 8281 70CC 8022 5652 3911 3C01 3131

That's a good sign that it's working as it should!

- --


Roy Smith


I use Firefox because I want to use software that complies
with Web standards.  See <http://www.mozilla.org/>.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 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=b3Hx
-----END PGP SIGNATURE-----


From Roland.Burger at gmx.tm  Mon Sep  8 09:26:40 2008
From: Roland.Burger at gmx.tm (Roland Burger)
Date: Mon, 8 Sep 2008 18:26:40 +0200
Subject: [Enigmail] Testing PGP Signature
References: <mailman.1014.1220856175.57136.enigmail@mozdev.org>
Message-ID: <1eu71vzn2m0k0.yl5dsh7bb5ou.dlg@40tude.net>

Am Mon, 08 Sep 2008 02:42:44 -0400 schrieb Gregory L. Viscardi:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> This is a test of my first GnuPGP signature and using Enigmail. If this
> were an actual signed email it would contain useful and/or engaging
> content. Again, this is just a test. Thank you and goodnight.
> 
I get:

*** PGP SIGNATURE VERIFICATION ***
*** Status:   Good Signature from Invalid Key
*** Alert:    Please verify signer's key before trusting signature.
*** Signer:   Gregory L. Viscardi <gviscardi at gmail.com> (0x3C013131)
*** Signed:   08.09.2008 08:42:44
*** Verified: 08.09.2008 18:24:07
*** BEGIN PGP VERIFIED MESSAGE ***


-- 
Viele Gr??e
Roland

From reinier.vermeer at gmail.com  Sat Sep  6 00:00:00 2008
From: reinier.vermeer at gmail.com (Reinier Vermeer)
Date: Sat, 06 Sep 2008 09:00:00 +0200
Subject: [Enigmail] first e-mail
Message-ID: <48C22A70.2060708@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Hi everybody,

I'm a young journalist, concerned about my online privacy. So I'm
installing Enigmail for the very first time. I'm pretty good with
technology, so I hope there won't be any problems. But I hope you'll
help me out if I run into any.
I hope I'll find some willing people to help me set up Enigmail properly.

kind regards,

Reinier
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iD8DBQFIwipwi428Lj4UJDMRAmYQAJ9zQ6vMlhM0GlJX5N8nwVzVzPmshACaAwSF
kKmVsOn5TkikewVx/9eSRkc=
=9yU1
-----END PGP SIGNATURE-----


From rasmith1959 at yahoo.com  Tue Sep  9 05:36:45 2008
From: rasmith1959 at yahoo.com (Roy Smith)
Date: Tue, 09 Sep 2008 07:36:45 -0500
Subject: [Enigmail] first e-mail
In-Reply-To: <48C22A70.2060708@gmail.com>
References: <48C22A70.2060708@gmail.com>
Message-ID: <48C66DDD.4000305@yahoo.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Reinier Vermeer wrote:
> Hi everybody,
>
> I'm a young journalist, concerned about my online privacy. So I'm
> installing Enigmail for the very first time. I'm pretty good with
> technology, so I hope there won't be any problems. But I hope you'll
> help me out if I run into any.
> I hope I'll find some willing people to help me set up Enigmail
> properly.
>
> kind regards,
>
> Reinier

OpenPGP Security Info

UNTRUSTED Good signature from Reinier Vermeer (die man uit engeland)
<reinier.vermeer at gmail.com>
Key ID: 0x3E142433 / Signed on: 9/6/2008 2:00 AM
Key fingerprint: A51B 70CC 300B 8CA6 FFBA 41AB 8B8D BC2E 3E14 2433

Looks like it's working to me!

- --


Roy Smith


I use Firefox because I want to use software that complies
with Web standards.  See <http://www.mozilla.org/>.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 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=EDBG
-----END PGP SIGNATURE-----


From post at lespocky.de  Tue Sep  9 05:50:31 2008
From: post at lespocky.de (Alexander Dahl)
Date: Tue, 09 Sep 2008 14:50:31 +0200
Subject: [Enigmail] first e-mail
In-Reply-To: <48C22A70.2060708@gmail.com>
References: <48C22A70.2060708@gmail.com>
Message-ID: <0ML25U-1Kd2g549Ax-0006Nt@mrelayeu.kundenserver.de>

Hi Reinier,

> I'm a young journalist, concerned about my online privacy. So I'm
> installing Enigmail for the very first time. I'm pretty good with
> technology, so I hope there won't be any problems. But I hope you'll
> help me out if I run into any.

Signature looks good:

OpenPGP Security Info

UNTRUSTED Good signature from Reinier Vermeer (die man uit engeland)
<reinier.vermeer at gmail.com>
Key ID: 0x3E142433 / Signed on: 06.09.2008 09:00
Key fingerprint: A51B 70CC 300B 8CA6 FFBA 41AB 8B8D BC2E 3E14 2433

> I hope I'll find some willing people to help me set up Enigmail properly.

You will, just ask if any problems arise.

Greets
Alex

-- 
?With the first link, the chain is forged. The first speech censured,
the first thought forbidden, the first freedom denied, chains us all
irrevocably.? (Jean-Luc Picard, quoting Judge Aaron Satie)
*** GnuPG-FP: 02C8 A590 7FE5 CA5F 3601  D1D5 8FBA 7744 CC87 10D0 ***

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080909/faac94fb/attachment.bin>

From rbrtryn at gmail.com  Tue Sep  9 14:57:55 2008
From: rbrtryn at gmail.com (Robert Ryan)
Date: Tue, 09 Sep 2008 15:57:55 -0600
Subject: [Enigmail] first e-mail
In-Reply-To: <48C22A70.2060708@gmail.com>
References: <48C22A70.2060708@gmail.com>
Message-ID: <48C6F163.20503@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 9/6/2008 1:00 AM, Reinier Vermeer wrote:
> I hope I'll find some willing people to help me set up Enigmail properly.

Feel free to email me direct if you want to test encryption.

Thanks for uploading your key to the servers, it made verifying your
signature much easier. looks like signing went well:

UNTRUSTED Good signature from Reinier Vermeer (die man uit engeland)
<reinier.vermeer at gmail.com>
Key ID: 0x3E142433 / Signed on: 9/6/2008 1:00 AM
Key fingerprint: A51B 70CC 300B 8CA6 FFBA 41AB 8B8D BC2E 3E14 2433
- --
Robert Ryan

I prefer encrypted email :)
My PGP keys: http://tinyurl.com/5snkgq

===================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIxvFjAAoJEPPvtS8+XvsGsAQH/0YftlxEvLd8X1tzzraiTPuk
zpuEaB7EZ2I1XQZANRmU9xiJeVdL+oRSDa9wFoySaW3JldvvJ2Hgq7Sqen4JWt7L
dAhYblQWQnZ9az/LbG0YhYJjJCntt5NLmayPNrCA1G5RXMYUBK06cXiV2ldu7fAu
EvYRCSrhGuCg4fr2KTZ1GGQ43jDN0wolIpHPekdhayGU4tb2oLIA+Uj00YMkTub/
mXFbMmebuFgDH0CYqOvkhKIoLSnvfHbMBBdERNNn49jO1Lb2S/6fdOFEF9uihURM
SRVINunuRGMW5PY0okjBhW0Nny+re+Cwzdv82h56c6Nh22XjJc1+pSd/dph+y9s=
=tw9F
-----END PGP SIGNATURE-----

From john at synchromesh.com  Tue Sep  9 20:55:22 2008
From: john at synchromesh.com (John Pallister)
Date: Wed, 10 Sep 2008 15:55:22 +1200
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
Message-ID: <48C7452A.8070400@synchromesh.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,

This is just a test message. Thanks to the Enigmail & GnuPG
developers for making this so painless.

Now if only I had a smart card for the reader in my laptop,
I wouldn't even have to type my passphrase...

Cheers,

John :^P
- --
John Pallister
john at synchromesh.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjHRSoACgkQkeNL+13zEf0Y2gCglCPdasTAZ2l42GnWY3jOiLHy

tLQAoNkspebTeyBw++tptimm0JOCznoP
=5EYy
-----END PGP SIGNATURE-----

From jmoore3rd at bellsouth.net  Tue Sep  9 21:01:13 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Wed, 10 Sep 2008 00:01:13 -0400
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48C7452A.8070400@synchromesh.com>
References: <48C7452A.8070400@synchromesh.com>
Message-ID: <48C74689.9000808@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

John Pallister wrote:

> This is just a test message. Thanks to the Enigmail & GnuPG
> developers for making this so painless.

UNTRUSTED Good signature from John Pallister <john at synchromesh.com>
Key ID: 0x5DF311FD / Signed on: 9/9/2008 11:55 PM
Key fingerprint: F29A 700A 4817 6AB3 0045 E0F9 91E3 4BFB 5DF3 11FD

Looks Good here.  Thank You for reading the entire QSG and uploading
Your key to the Servers _prior_ to Posting.  :-D

JOHN ;)
Timestamp: Wednesday 10 Sep 2008, 00:01  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIx0aIAAoJEBCGy9eAtCsPpJIH/RH5QZ6ZOfQtiuHYoFsi8DXo
iD/5QLnTe+keW2zQq8iuGsaeSq5otPiCDemUlbhZLEB0zFL5e8X1YDRD1MmWxbW6
Ohj9Z+3pPZnxsyD4KFNfJxBWqCbtPiksztiY9J8XjSKrMMtuTL6s6+cLLouUT6Sp
uxFBph0S7ggjbSlmQUMOpW1C8WKsyPUOwuwW9cuaz+ui3mgbpVtcz7PWbl1s1+Jf
z1wEvgZQKM+Sdhe18I1n5BQ8wwEzuqoM5WRj43Q90+V6cOTuhA3twJYbsjkqDnO5
uTo/DbVQWVkUOT1gP5SNxLuOhpBKj2T4Ua6NvWeJFF7SUESS/AIs7VnC1/aMXgA=
=KJir
-----END PGP SIGNATURE-----

From darylstyrk at gmail.com  Tue Sep  9 21:01:37 2008
From: darylstyrk at gmail.com (Daryl Styrk)
Date: Wed, 10 Sep 2008 00:01:37 -0400
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48C7452A.8070400@synchromesh.com>
References: <48C7452A.8070400@synchromesh.com>
Message-ID: <48C746A1.9060802@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

John,
	Currently I get.

gpg: requesting key 5DF311FD from hkp server pool.sks-keyservers.net
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0

I'll try the servers again in a few minutes.

Daryl

John Pallister wrote:
> Hello,
> 
> This is just a test message. Thanks to the Enigmail & GnuPG
> developers for making this so painless.
> 
> Now if only I had a smart card for the reader in my laptop,
> I wouldn't even have to type my passphrase...
> 
> Cheers,
> 
> John :^P
_______________________________________________
Enigmail mailing list
Enigmail at mozdev.org
https://www.mozdev.org/mailman/listinfo/enigmail
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjHRqEACgkQejxzjThnMmLFYwCdGHIBGPiise/Zi/100sTmxQqE
a/UAoNrKgFW/yLqtMWyRGbrJQrd3jOae
=CH+j
-----END PGP SIGNATURE-----

From jmoore3rd at bellsouth.net  Tue Sep  9 21:04:43 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Wed, 10 Sep 2008 00:04:43 -0400
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48C746A1.9060802@gmail.com>
References: <48C7452A.8070400@synchromesh.com> <48C746A1.9060802@gmail.com>
Message-ID: <48C7475B.5000807@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Daryl Styrk wrote:

> gpg: requesting key 5DF311FD from hkp server pool.sks-keyservers.net
> gpg: no valid OpenPGP data found.
> gpg: Total number processed: 0
> 
> I'll try the servers again in a few minutes.

Try again now as it worked for Me on the 1st pass.  :)

JOHN ;)
Timestamp: Wednesday 10 Sep 2008, 00:04  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIx0dZAAoJEBCGy9eAtCsPAiEH/1p8he+mP3VbnKgF6PegPiJI
r++Td41qYK0HLUpGIznWNsxHwBqkpZt+PUF9dlp81sAZHBwCFf8tkTUBzNzBgBCM
voFxLXd+rvXJwc7IyOczSUKAH91+7YUrTUSb09lXGECWmAwEOOTetItx6d8VuJmY
dYnWev6Qao4JqG7t/vhznmtwVq+xM/byR6tt9h/izKKMNhWVzgmIeelxHWVYAqC6
HsTQRzSQO0TaqyPUvfXAqkJsRKP6aVDAcZa+bE4m+crp/KewxWbAWoYE83/LWbzW
+0OhA5mIZMMpb/h0+EQHlCV0eV4cHI74o9pPpJ4k2QTTTfoSQ6dbfgyPfRSU1vc=
=Yn+a
-----END PGP SIGNATURE-----

From darylstyrk at gmail.com  Tue Sep  9 21:13:51 2008
From: darylstyrk at gmail.com (Daryl Styrk)
Date: Wed, 10 Sep 2008 00:13:51 -0400
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48C7475B.5000807@bellsouth.net>
References: <48C7452A.8070400@synchromesh.com> <48C746A1.9060802@gmail.com>
	<48C7475B.5000807@bellsouth.net>
Message-ID: <48C7497F.5000801@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

gpg: requesting key 5DF311FD from hkp server subkeys.pgp.net
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0

gpg: requesting key 5DF311FD from hkp server pgp.mit.edu
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0

gpg: requesting key 5DF311FD from hkp server pool.sks-keyservers.net
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0


0/3?

My end?

Daryl

John W. Moore III wrote:
> Daryl Styrk wrote:
> 
>> gpg: requesting key 5DF311FD from hkp server pool.sks-keyservers.net
>> gpg: no valid OpenPGP data found.
>> gpg: Total number processed: 0
> 
>> I'll try the servers again in a few minutes.
> 
> Try again now as it worked for Me on the 1st pass.  :)
> 
> JOHN ;)
> Timestamp: Wednesday 10 Sep 2008, 00:04  --400 (Eastern Daylight Time)
_______________________________________________
Enigmail mailing list
Enigmail at mozdev.org
https://www.mozdev.org/mailman/listinfo/enigmail
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjHSX8ACgkQejxzjThnMmIqOwCgqSsZ2IqrTbRG6zbPu+hZ/pLN
ttkAn1NjQnse8p2t4jttYKrE8DkZQ8c0
=Zh9o
-----END PGP SIGNATURE-----

From faramir.cl at gmail.com  Tue Sep  9 21:35:28 2008
From: faramir.cl at gmail.com (Faramir)
Date: Wed, 10 Sep 2008 00:35:28 -0400
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48C7497F.5000801@gmail.com>
References: <48C7452A.8070400@synchromesh.com>
	<48C746A1.9060802@gmail.com>	<48C7475B.5000807@bellsouth.net>
	<48C7497F.5000801@gmail.com>
Message-ID: <48C74E90.5030100@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Daryl Styrk escribi?:
...
> gpg: requesting key 5DF311FD from hkp server pool.sks-keyservers.net
> gpg: no valid OpenPGP data found.
> gpg: Total number processed: 0
> 
> 
> 0/3?
> 
> My end?

  Probably... I got the key on first attempt too... about half an hour
ago...

  Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIx06QAAoJEMV4f6PvczxAMJ0H/jqdJCj3n/bJCh9mrU3/uMhe
STsLGxVYqrlxtw++FkmMNNfUAH37PuCPoV0zwLzVjk0+QRrXVLUBIY0YdUAJN8XL
Pyg1gT9rnVSVNqFOnRmxDZTmlXUSm1B3Bx1yrrSw86Rl2olvqa3TlHMT6QAuHE5t
FZ9YM3R9ptq2Y0x05Mxab10xOm8KAnBTLhhY8bZQMvlVAIF87yBXKxI3wngBqWwl
sPtM3elwGX3rkzDNoIyE7NCHLwB1UHIdN8eFOPqIVhQaFxHoJ56Lw6Z+s8HfF44S
UYxN0ehdhk/j3OKQIcF8ybuGZ0krMJWnmvt2XDxRAUQRF9JcnpdtQHlXSAgt7/o=
=ol98
-----END PGP SIGNATURE-----

From darylstyrk at gmail.com  Tue Sep  9 21:40:39 2008
From: darylstyrk at gmail.com (Daryl Styrk)
Date: Wed, 10 Sep 2008 00:40:39 -0400
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48C74E90.5030100@gmail.com>
References: <48C7452A.8070400@synchromesh.com>	<48C746A1.9060802@gmail.com>	<48C7475B.5000807@bellsouth.net>	<48C7497F.5000801@gmail.com>
	<48C74E90.5030100@gmail.com>
Message-ID: <48C74FC7.3030006@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Well first attempt to retrieve Faramir's was successful...

UNTRUSTED Good signature from Faramir <faramir.cl at gmail.com>
Key ID: 0xEF733C40 / Signed on: 09/10/2008 12:35 AM

Whats going on?

Daryl

Faramir wrote:
> Daryl Styrk escribi?:
> ...
>> gpg: requesting key 5DF311FD from hkp server pool.sks-keyservers.net
>> gpg: no valid OpenPGP data found.
>> gpg: Total number processed: 0
> 
> 
>> 0/3?
> 
>> My end?
> 
>   Probably... I got the key on first attempt too... about half an hour
> ago...
> 
>   Best Regards
_______________________________________________
Enigmail mailing list
Enigmail at mozdev.org
https://www.mozdev.org/mailman/listinfo/enigmail
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjHT8cACgkQejxzjThnMmJXUwCbB+1eEyNncTgTafxZVNA3q2is
hXMAn1Nk03ulUfWBwtxRiGL1beBMTh1L
=QFwA
-----END PGP SIGNATURE-----

From rjh at sixdemonbag.org  Tue Sep  9 21:49:17 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Tue, 09 Sep 2008 23:49:17 -0500
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48C74FC7.3030006@gmail.com>
References: <48C7452A.8070400@synchromesh.com>	<48C746A1.9060802@gmail.com>	<48C7475B.5000807@bellsouth.net>	<48C7497F.5000801@gmail.com>	<48C74E90.5030100@gmail.com>
	<48C74FC7.3030006@gmail.com>
Message-ID: <48C751CD.1010500@sixdemonbag.org>

Daryl Styrk wrote:
> Whats going on?

Nothing.  Your system is working fine.

pool.sks-keyservers.net is an alias; you hit that site, you get silently
redirected to one of the SKS keyservers in the pool.  This means when
you upload a key to sks-keyservers.net, you might upload it to server A;
but when someone tried to get your key from sks-keyservers.net, you
might try to pull it off server Z.

It takes time for keys to propagate from A to Z.



From jmoore3rd at bellsouth.net  Tue Sep  9 21:50:02 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Wed, 10 Sep 2008 00:50:02 -0400
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48C74FC7.3030006@gmail.com>
References: <48C7452A.8070400@synchromesh.com>	<48C746A1.9060802@gmail.com>	<48C7475B.5000807@bellsouth.net>	<48C7497F.5000801@gmail.com>	<48C74E90.5030100@gmail.com>
	<48C74FC7.3030006@gmail.com>
Message-ID: <48C751FA.7060108@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512


>>> gpg: requesting key 5DF311FD from hkp server pool.sks-keyservers.net
>>> gpg: no valid OpenPGP data found.
>>> gpg: Total number processed: 0

Send To: Gingerbear failed with a "File Read Error" so I am attaching
the Key here.

JOHN ;)
Timestamp: Wednesday 10 Sep 2008, 00:49  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJIx1H3AAoJEBCGy9eAtCsP9ewH/RXjg3GhAFaTdFuvOPeQsGsR
tkQrM0FUXNJDh9fkMS0TBLOsoJG7/jJEefqftcubf5WiMbnAAp+VWKihAUAIxXdv
bMObwh5jwcd1h9sUIHxmZNXaciA1e7pxyAasSkIf7RdRrpuY8WOvXO3tIvgXQ2E0
bs6AFhB+ck4EUbCAd00g5wkDXMatJo8U2vdWZdzTAKvZdIpl2Cb624ccKL1ng1vA
L7yWZgAXjsYk2rYw1IQMv/TTz5MaxeGO2n+cKFRM/3YaSfSrfIaD2NrJiKf95Xke
5cFK8UkGFxjSgz5geDVdmjxtU60J2zXBq7n1YtlgBzxHnJd44J7Pz2RScSFZUV0=
=rekQ
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: John Pallister (0x5DF311FD) pub.asc
Type: application/pgp-keys
Size: 1885 bytes
Desc: not available
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080910/2aa9b1ac/attachment.bin>

From darylstyrk at gmail.com  Tue Sep  9 21:58:06 2008
From: darylstyrk at gmail.com (Daryl Styrk)
Date: Wed, 10 Sep 2008 00:58:06 -0400
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48C751FA.7060108@bellsouth.net>
References: <48C7452A.8070400@synchromesh.com>	<48C746A1.9060802@gmail.com>	<48C7475B.5000807@bellsouth.net>	<48C7497F.5000801@gmail.com>	<48C74E90.5030100@gmail.com>	<48C74FC7.3030006@gmail.com>
	<48C751FA.7060108@bellsouth.net>
Message-ID: <48C753DE.6010202@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I was able to get it from a server..  1hr and 3 minutes later.. :)

Daryl.

John W. Moore III wrote:
> 
>>>> gpg: requesting key 5DF311FD from hkp server pool.sks-keyservers.net
>>>> gpg: no valid OpenPGP data found.
>>>> gpg: Total number processed: 0
> 
> Send To: Gingerbear failed with a "File Read Error" so I am attaching
> the Key here.
> 
> JOHN ;)
> Timestamp: Wednesday 10 Sep 2008, 00:49  --400 (Eastern Daylight Time)

- ------------------------------------------------------------------------

_______________________________________________
Enigmail mailing list
Enigmail at mozdev.org
https://www.mozdev.org/mailman/listinfo/enigmail
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjHU94ACgkQejxzjThnMmJQGgCg0AiRFOK04Z9WQqnX6Km0HMkR
Y3wAoNy6edracmOakFO3SybkfHjA806N
=uNiE
-----END PGP SIGNATURE-----

From faramir.cl at gmail.com  Tue Sep  9 22:16:20 2008
From: faramir.cl at gmail.com (Faramir)
Date: Wed, 10 Sep 2008 01:16:20 -0400
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48C753DE.6010202@gmail.com>
References: <48C7452A.8070400@synchromesh.com>	<48C746A1.9060802@gmail.com>	<48C7475B.5000807@bellsouth.net>	<48C7497F.5000801@gmail.com>	<48C74E90.5030100@gmail.com>	<48C74FC7.3030006@gmail.com>	<48C751FA.7060108@bellsouth.net>
	<48C753DE.6010202@gmail.com>
Message-ID: <48C75824.6070707@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Daryl Styrk escribi?:
> I was able to get it from a server..  1hr and 3 minutes later.. :)

   Maybe the key propagation was slower than usual...

  Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIx1gkAAoJEMV4f6PvczxAKs0H/2PzJWURs9GobrvUdkYzCBPa
JV7i9JnlzavZ/xwDtqr0mg7ikOtlWjzoO7JGHQ55KUyazVXhqWNfzD2ABprcK+fb
CoohV+cbs8G/4EQ9w2aaRLHvOX7agmUFCM+BgyI6qM59hfzRlZ+w16MhiDAdMJCX
gyHCz0wKMcvQlnwlkPoGgc5oxxgNYnahp7DtPH2dYN5IZwUjhjJDamR/KLbXN+Dw
hYjFsNEN27rw3PSnJMgqw3YoSNVv0TL2grufPe7Xf6dPiQFG5XvM9E+0/BHqffey
f65DfcM9GcorWvs7/yVJbXUCgf8rs4JyXt0dInOuR3x8Xdw16Q4J4KfrBXdjW5U=
=NwS8
-----END PGP SIGNATURE-----

From scottm at tek-tite.com  Tue Sep  9 07:30:40 2008
From: scottm at tek-tite.com (Scott Mele)
Date: Tue, 09 Sep 2008 10:30:40 -0400
Subject: [Enigmail] testing
Message-ID: <48C68890.2020405@tek-tite.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Hello,

Testing my enigmail,  Can anyone give me a hand?

- --
Best regards,

Scott Mele
President
Tektite Industries, Inc.
309 North Clinton Ave.
Trenton, NJ 08638-5122

609.656.0600 Voice
609.656.0063 Fax
http://www.tek-tite.com
"Demanding environments...
Rugged gear"tm
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iD8DBQFIxoiQ9SuCJ1KMug0RAjXTAJ9VJGrmOQyga32Z78PJ8P0YI9uQwACfbMfF
RMx9MQP/dX9E0UElKCHVNhc=
=rjwf
-----END PGP SIGNATURE-----

-------------- next part --------------
A non-text attachment was scrubbed...
Name: scottm.vcf
Type: text/x-vcard
Size: 289 bytes
Desc: not available
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080909/8000e050/attachment.vcf>

From rjh at sixdemonbag.org  Sat Sep 13 04:44:02 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Sat, 13 Sep 2008 06:44:02 -0500
Subject: [Enigmail] testing
In-Reply-To: <48C68890.2020405@tek-tite.com>
References: <48C68890.2020405@tek-tite.com>
Message-ID: <48CBA782.7030609@sixdemonbag.org>

Scott Mele wrote:
> Testing my enigmail,  Can anyone give me a hand?

Your system appears to be correctly configured.  Congratulations.  :)



From ldc at lrcressy.com  Sat Sep 13 07:52:11 2008
From: ldc at lrcressy.com (LeRoy Cressy)
Date: Sat, 13 Sep 2008 10:52:11 -0400
Subject: [Enigmail] testing
In-Reply-To: <48C68890.2020405@tek-tite.com>
References: <48C68890.2020405@tek-tite.com>
Message-ID: <48CBD39B.2070301@lrcressy.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Scott Mele wrote:
> Hello,
> 
> Testing my enigmail,  Can anyone give me a hand?
> 
Hi Scott,

Good signature from "Scott Mele <scottm at tek-tite.com>"

If you want to test encryption please feel free to send me an encrypted
message at mailto:ldc at lrcressy.com

It is nice seeing corporate users using strong encryption and security.
- --
 Rev. LeRoy D. Cressy  mailto:leroy at lrcressy.com   /\_/\
                       http://lrcressy.com        ( o.o )
                       Phone:  215-535-4037        > ^ <

gpg fingerprint:  62DE 6CAB CEE1 B1B3 359A  81D8 3FEF E6DA 8501 AFEA

For info on enigmail:    http://lrcressy.com/linux/mozilla.pdf
For info on gpg:         http://www.gnupg.org/

Jesus saith unto him, I am the way, the truth, and the life:
no man cometh unto the Father, but by me. (John 14:6)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEVAwUBSMvTmquxGqN1iGbbAQgb/Qf/VM6K4fKPOTTdHgn32nfd1hFne6tsDtQH
7ZuYakeCS/r6pQqwAfDBKq5dlBudrZ9G3AxkujsXkJ6chbCUCOopg/OKSThd9+e3
OZwQZ9mrZ4z5Vl4IhkipJY66Mm8DvnNJ6p3l4mWnGt9QQjxsqr55rfG38IAuHy08
XlYjvGXceirYgxazApQE3iF5m/Y3zIngtaI+qoAFebVX1v30DGTybc8rhg5Eh3UZ
OXMKr8FUil+0+Gi/r0zZRRbQ7RbSNr0wdgFxX+c0OjjjkPkVr1zpK2m0uxjJanjz
PMyhukhiiy4bkXh8h+ktB3dpttLr+SO/T5qRfjFwmkvKriKjPIJSpA==
=fMqN
-----END PGP SIGNATURE-----

From bblackmoor at secure.blackgate.net  Sun Sep 14 14:24:32 2008
From: bblackmoor at secure.blackgate.net (Brandon Blackmoor)
Date: Sun, 14 Sep 2008 17:24:32 -0400
Subject: [Enigmail] question regarding encryption and mailing lists
Message-ID: <48CD8110.6050305@secure.blackgate.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

My name is Brandon Blackmoor. I have been playing with encryption for
nearly two decades, primarily using PGP and its offshoots. I gave up on
it many times, because it was just too much trouble to use, and it
requires both the sender and the recipient to use it.

After many years, I stumbled across Enigmail earlier today, and I have
to say I am utterly amazed. This makes email encryption absolutely
painless! This is incredible! I plan to start anew, trying to coax my
friends and family into adopting it.

However, I have a few practical questions. If there are links which
provide the answers, feel to reply with the link rather than repeating
what has been said before. I am more than willing to read. Also, feel
free to assume that I have a basic knowledge of how public-key
cryptography works, but if you choose to explain a simple concept, I
will not be offended.

1) How do people handle mailing lists, such as this one? Is it feasible
to encrypt messages sent to a mailing list?

2) How do people handle web-based email? Is it feasible to use email
encryption when one typically checks one's mail via a web site?

Thank you for your time, and for this wonderful piece of software.

- --
bblackmoor at secure.blackgate.net
2008-09-14
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjNgQ8ACgkQAGkWiMCbp240IACfecliGSsgBBz62Vc8I8qXvEVo
KosAoJW/Jojkdfcht9QEtRvN4Nzp+9PJ
=AQ/X
-----END PGP SIGNATURE-----

From John at Mozilla-Enigmail.org  Sun Sep 14 14:49:03 2008
From: John at Mozilla-Enigmail.org (John Clizbe)
Date: Sun, 14 Sep 2008 16:49:03 -0500
Subject: [Enigmail] question regarding encryption and mailing lists
In-Reply-To: <48CD8110.6050305@secure.blackgate.net>
References: <48CD8110.6050305@secure.blackgate.net>
Message-ID: <48CD86CF.3040807@Mozilla-Enigmail.org>

Brandon Blackmoor wrote:
> My name is Brandon Blackmoor. I have been playing with encryption for
> nearly two decades, primarily using PGP and its offshoots. I gave up on
> it many times, because it was just too much trouble to use, and it
> requires both the sender and the recipient to use it.
> 
> After many years, I stumbled across Enigmail earlier today, and I have
> to say I am utterly amazed. This makes email encryption absolutely
> painless! This is incredible! I plan to start anew, trying to coax my
> friends and family into adopting it.

Good luck.

> However, I have a few practical questions. If there are links which
> provide the answers, feel to reply with the link rather than repeating
> what has been said before. I am more than willing to read. Also, feel
> free to assume that I have a basic knowledge of how public-key
> cryptography works, but if you choose to explain a simple concept, I
> will not be offended.

We do our best to make it understanale without dumbing-down or talking-over-heads.

> 1) How do people handle mailing lists, such as this one? Is it feasible
> to encrypt messages sent to a mailing list?

Sending encrypted messages to a public list is to be avoided. In fact, many view
it as an antisocial behavior since few, if any, of the list recipients will be
able to decrypt the message.

Sending encrypted traffic to a private list where the membership is closely
monitored and managed is doable. There are one or two such list at Yahoo! which
operate with everything-encrypted to each member (PGP-Basics is *not* one of
these), but they have small memberships and even though based on a public
system, I think of each as a private list.

It's a bit too cloak-n-dagger for me.

> 2) How do people handle web-based email? Is it feasible to use email
> encryption when one typically checks one's mail via a web site?

Signing with web mail is rather hit-and-miss. Encryption with web mail actually
works as the things that break signing are not available to be applied to an
encrypted message. All one needs is either current window or clipboard
functionality such as that provided my PGP or the GPGshell application on
Windows or the FireGPG extension to Firefox.

A good number of folks opt for composing an encypted message first in a local
editor, encrypting, and *then* pasting the encrypted message into the web mail
form instead of composing in the form window.

> Thank you for your time, and for this wonderful piece of software.

You are most welcome.

-- 
John P. Clizbe                      Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net  or
     mailto:pgp-public-keys at gingerbear.net?subject=HELP

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 677 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080914/534fef91/attachment.bin>

From rjh at sixdemonbag.org  Sun Sep 14 16:18:24 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Sun, 14 Sep 2008 18:18:24 -0500
Subject: [Enigmail] question regarding encryption and mailing lists
In-Reply-To: <48CD8110.6050305@secure.blackgate.net>
References: <48CD8110.6050305@secure.blackgate.net>
Message-ID: <48CD9BC0.1090903@sixdemonbag.org>

Brandon Blackmoor wrote:
> My name is Brandon Blackmoor. I have been playing with encryption for
> nearly two decades, primarily using PGP and its offshoots. I gave up on
> it many times, because it was just too much trouble to use, and it
> requires both the sender and the recipient to use it.

Welcome to the Enigmail list.  You've probably noticed that one of your
quotes is on a FAQ that I maintain:

http://sixdemonbag.org/cryptofaq.xhtml

Thanks for the quote, BTW; it's been of great use throughout the years.

> 1) How do people handle mailing lists, such as this one? Is it feasible
> to encrypt messages sent to a mailing list?

Mailing list traffic is very hard to do well.  There are two problems:
one mathematical, one large-scale human factor, and one individual human
factor.



Mathematical:

In the simple case, public key cryptography requires what mathematicians
call a "complete graph".  Every node (user) must contain a vertex
(public key) for every other node (user).  When you want to encrypt to a
mailing list of 100 people, you encrypt the message with 100 keys.

The problems with this is that for N users, there are (N**2 - N)/2 key
exchanges, each of which people can screw up.  Mailing lists which do
this sort of thing tend to be filled with a ton of "I couldn't read that
last one because the sender didn't encrypt it to my key" and a lot of
"repost: now with key 0xDEADBEEF" messages.

For small (< 10) and stable (not a lot of user churn) mailing lists this
isn't a huge problem.  For large and/or unstable lists, this becomes a
big problem.


Large-scale human factor:

Three can keep a secret if two of them are dead.  The more people who
are privy to an encrypted communication, the less benefit you gain from
encryption.  Someone who wants to know the contents of the encrypted
mail can just start asking people on the list "hey, I didn't get that
last mail, could you re-send it to me off-list encrypted with my key?"
Dollars to donuts says they'll mistake this for a repost request and
will comply.  The larger your list becomes, the exponentially more
repost requests there are, which makes this attack exponentially easier
to pull off.


Small-scale human factor:

How do you validate all those keys?



... This isn't to say it can't be done or shouldn't be done.  If you
really need this, after all, then you really need this.  But you should
expect to get bitten by these problems, so start making plans now.  :)

> 2) How do people handle web-based email? Is it feasible to use email
> encryption when one typically checks one's mail via a web site?

Yes, although there are various caveats with this.  For instance, many
webmail companies will silently munge plaintext messages in certain
ways, which ruins clearsigned messages.  Encrypted and/or
encrypted-and-signed messages typically work much better than simple
clearsigned messages.

> Thank you for your time, and for this wonderful piece of software.

Absolutely.  Thank you for _Legend: War of Ages_; I wasted many a
pleasant afternoon with that in the early nineties.  Call it karma; what
goes around comes around.  :)


From rjh at sixdemonbag.org  Sun Sep 14 17:48:49 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Sun, 14 Sep 2008 19:48:49 -0500
Subject: [Enigmail] question regarding encryption and mailing lists
In-Reply-To: <48CD9BC0.1090903@sixdemonbag.org>
References: <48CD8110.6050305@secure.blackgate.net>
	<48CD9BC0.1090903@sixdemonbag.org>
Message-ID: <48CDB0F1.2010800@sixdemonbag.org>

Gah!  Typos!

Robert J. Hansen wrote:
> Mailing list traffic is very hard to do well.  There are two problems:
> one mathematical, one large-scale human factor, and one individual human
> factor.

Three, not two.

> Absolutely.  Thank you for _Legend: War of Ages_; I wasted many a

_Legacy_.  In my defense, it _has_ been almost fifteen years...



From faramir.cl at gmail.com  Mon Sep 15 21:08:26 2008
From: faramir.cl at gmail.com (Faramir)
Date: Tue, 16 Sep 2008 00:08:26 -0400
Subject: [Enigmail] question regarding encryption and mailing lists
In-Reply-To: <48CD8110.6050305@secure.blackgate.net>
References: <48CD8110.6050305@secure.blackgate.net>
Message-ID: <48CF313A.4000109@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Brandon Blackmoor escribi?:
> My name is Brandon Blackmoor. I have been playing with encryption for
> nearly two decades, primarily using PGP and its offshoots. I gave up on

  Hello! I have been playing with encryption for about 4 months... so
don't belive too much what I write... I am still learning.

> 1) How do people handle mailing lists, such as this one? Is it feasible
> to encrypt messages sent to a mailing list?

  We don't encrypt the messages to the list. However, I know there is a
list that use encrypted messages, however, it is for testing purposes...
I don't know about lists using encryption to talk about other things...

> 2) How do people handle web-based email? Is it feasible to use email
> encryption when one typically checks one's mail via a web site?

  I carry ThunderbirdPortable in an USB flash memory stick, with GPG and
Enigmail... but I have been warned to don't use it unless I am really
sure the computer is "clean and safe"...
  Other people uses notepad (or that kind of utility) to compose the
message, then they encrypt it in the memory (the gpgtray utility of
GPGshell is really useful, it allows to encrypt the content of the
clipboard), and then they paste it in the webmail composer (but they
have configured the composer to avoid it breaking the messages). The
important thing is never use the webmail composer to write the clear
message, because the "save draft" features will keep a copy of the clear
text... Also, keep in minf webmail composers can do unexpected things,
and unexpected things are not good friends of encryption or
signatures... don't be surprised if a message is broken.


> Thank you for your time, and for this wonderful piece of software.

  Yes, God save the Developers ;)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJIzzE6AAoJEMV4f6PvczxAe5IH/jmWuxkWJ3xedtZ1DPt+YFPk
dwPe3Rkbf4O0nSN0OykL7urm1N7hcyAjLgYGCXVO3KM/91PkhVCdaCDFXUyYArTT
k8kWQDMeRspumV4xsgNKWpIm4yxWuq/RsDhHa1vEI9169HDuGvsCewLJ+2v/JmzS
R3n5+T0qwdF3fzXZQ+ZgFjp7oHC4GC6W+o/hyzhZpDPaVON78zR7WOiIwon8RyMp
dkfoC1kuC17mpAC4nxOcgaVXLMzHHKtKPO+6W+J2vzsLQLPVHl55HM7udER4MyVW
2fCreutjApiY16VW5z7EvOVFycCL265K1j0VX6ds3/Vl0vM2ypH4xL/WwGnjAhg=
=dr2r
-----END PGP SIGNATURE-----

From post at lespocky.de  Tue Sep 16 00:47:32 2008
From: post at lespocky.de (Alexander Dahl)
Date: Tue, 16 Sep 2008 09:47:32 +0200
Subject: [Enigmail] question regarding encryption and mailing lists
In-Reply-To: <48CD8110.6050305@secure.blackgate.net>
References: <48CD8110.6050305@secure.blackgate.net>
Message-ID: <0MKwtQ-1KfVHg2hpa-0005U2@mrelayeu.kundenserver.de>

Hi Brandon,

> 2) How do people handle web-based email? Is it feasible to use email
> encryption when one typically checks one's mail via a web site?

I didn't hear of any mail provider offering pgp signing/encryption
integrated in the webmailer itself. If you can install your own webmail
application on your own server, it could be possible.

There has been a plugin for SquirrelMail [1] which required GnuPG to be
installed on the same host but the development died as far as I know.

Roundcube webmail has this on the roadmap [2] but I don't think this
will be usable in the near future.

The installation of GnuPG on the server hosting the webmail application
introduces certain risks. With the Squirrelmail plugin for example you
had to put your secret key on this server. I would appreciate a
discussion on this topic, if it's not to far off-topic on this list.

Greets
Alex

[1] http://www.squirrelmail.org/plugin_view.php?id=153
[2] http://trac.roundcube.net/roadmap

-- 
?With the first link, the chain is forged. The first speech censured,
the first thought forbidden, the first freedom denied, chains us all
irrevocably.? (Jean-Luc Picard, quoting Judge Aaron Satie)
*** GnuPG-FP: 02C8 A590 7FE5 CA5F 3601  D1D5 8FBA 7744 CC87 10D0 ***

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080916/5432d3db/attachment.bin>

From tim.thegoodlife.bennett at googlemail.com  Wed Sep 17 16:46:04 2008
From: tim.thegoodlife.bennett at googlemail.com (Tim)
Date: Thu, 18 Sep 2008 00:46:04 +0100
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
Message-ID: <48D196BC.8020507@googlemail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

This is just a test message.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjRlrwACgkQ4CXe2InFGesIgwCeIC8G9XyU3Pp8Oo2W6AG3vfpW
LKQAoOqP6AKs7Xr3G0lVxydhWF98W2WE
=NDl/
-----END PGP SIGNATURE-----

From rbrtryn at gmail.com  Wed Sep 17 17:13:33 2008
From: rbrtryn at gmail.com (Robert Ryan)
Date: Wed, 17 Sep 2008 18:13:33 -0600
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48D196BC.8020507@googlemail.com>
References: <48D196BC.8020507@googlemail.com>
Message-ID: <48D19D2D.6030308@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 9/17/2008 5:46 PM, Tim wrote:
> This is just a test message.

Well done!

UNTRUSTED Good signature from Tim <tim.thegoodlife.bennett at googlemail.com>
Key ID: 0x89C519EB / Signed on: 9/17/2008 5:46 PM
Key fingerprint: 13C6 E65E 7DBC 91C3 8614 3DD7 E025 DED8 89C5 19EB
- --
Robert Ryan

I prefer encrypted email :)
My PGP keys: http://tinyurl.com/5snkgq

===================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJI0Z0tAAoJEPPvtS8+XvsGY9cH/i19EouStr/TCT7Qfbw6Ht0p
zdr+6ukc0719eYmycu5PpucICiisJv+u33K4Wy4E7DP3dXtYJBTy+irkxedOSQeC
XRwnsPsopFYUSM4M6cOPwzrAOwsyLoqEiKJZMvl99SmkeGhTnwoHnT0XmFH83kFl
501vc8ZBGZ7OTjIdA54pxUJTr2oo5IbTjAC2jqqR38HCgwfNm7U8ylPWDBaVc7ck
9fDwMtef1ZXccEt2NHkF83Fnq1MUTS+v+b+DCvDdKllaBmC5YE5UiyM3lSM7sXQ2
zkUgkOQ5BjirObR0rt7m1exFNO0UhR5F4iE0A9LqJnab/4x5vo0D3bKHufsZnJQ=
=P+sw
-----END PGP SIGNATURE-----

From ldc at lrcressy.com  Thu Sep 18 04:31:46 2008
From: ldc at lrcressy.com (LeRoy Cressy)
Date: Thu, 18 Sep 2008 07:31:46 -0400
Subject: [Enigmail] A test email, as per the Enigmail Quick Start Guide
In-Reply-To: <48D196BC.8020507@googlemail.com>
References: <48D196BC.8020507@googlemail.com>
Message-ID: <48D23C22.4090202@lrcressy.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Tim wrote:
> This is just a test message.

Good Signature

- --
 Rev. LeRoy D. Cressy  mailto:leroy at lrcressy.com   /\_/\
                       http://lrcressy.com        ( o.o )
                       Phone:  215-535-4037        > ^ <

gpg fingerprint:  62DE 6CAB CEE1 B1B3 359A  81D8 3FEF E6DA 8501 AFEA

For info on enigmail:    http://lrcressy.com/linux/mozilla.pdf
For info on gpg:         http://www.gnupg.org/

Jesus saith unto him, I am the way, the truth, and the life:
no man cometh unto the Father, but by me. (John 14:6)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEVAwUBSNI8IauxGqN1iGbbAQi8AAf9Fv0TzBG4DRmM0odLumgv8UvQk0vAjMLe
YJ5NSqoix0S3XkjSNAhnHgAKZv9IUi6qHuuPeQV5g5MQVtDnOu6/QL6QVqRIBTYT
1w0b13UbxpWZxcWopTeSGnjvNfTURX52miDCBbQTcAwgPxSwSQhN9P4Dy3uKqsAr
76PLeZt9jdD6ynOytNryvoi8dvehaqtps9g0yVYnT77Zx/yNMyUjkSH+BeHba3lj
Eh883qqmeMj4yoEjjzecjMTg9FSSA+oP62qhlJjIrpG9TmIHTaIx6CigENiKhi7s
Y17iJ7pk4N3iHt0SRyA3PQgsQKFQwuXQ5JUz4tHXeda/uhu44XO/xg==
=mHm9
-----END PGP SIGNATURE-----

From pierig.vezin at wethica.com  Fri Sep 19 00:42:34 2008
From: pierig.vezin at wethica.com (Pierig Vezin)
Date: Fri, 19 Sep 2008 15:42:34 +0800
Subject: [Enigmail] First test
Message-ID: <48D357EA.3010702@wethica.com>

Hello all,

This is my first signed email test. If you see it signed, that means I
hope I will handle next step too.

Thanks

-- 
*Pierig VEZIN*


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080919/c611494c/attachment.bin>

From sean at rima.ws  Fri Sep 19 01:38:04 2008
From: sean at rima.ws (Sean Rima)
Date: Fri, 19 Sep 2008 09:38:04 +0100
Subject: [Enigmail] First test
In-Reply-To: <48D357EA.3010702@wethica.com>
References: <48D357EA.3010702@wethica.com>
Message-ID: <48D364EC.3070101@rima.ws>

Pierig Vezin wrote:
> Hello all,
> 
> This is my first signed email test. If you see it signed, that means I
> hope I will handle next step too.
> 
Looks good here

OpenPGP Security Info

Good signature from Pierig Vezin (voit foie) <pierig.vezin at wethica.com>
Key ID: 0x79EA644E / Signed on: 19/09/2008 08:42
Key fingerprint: B8D5 BAEC 39A2 A7A5 7BAF ECD1 2529 96A5 79EA 644E

Sean

-- 
Sean
Thawte, GSWoT and CaCert WOT Assurer

I believe that every human has a finite number of
heartbeats. I don't intend to waste any of mine
running around doing exercises. - Neil Armstrong

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 318 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080919/f2a70764/attachment.bin>

From jmoore3rd at bellsouth.net  Fri Sep 19 03:37:13 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Fri, 19 Sep 2008 06:37:13 -0400
Subject: [Enigmail] First test
In-Reply-To: <48D357EA.3010702@wethica.com>
References: <48D357EA.3010702@wethica.com>
Message-ID: <48D380D9.2010403@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Pierig Vezin wrote:

> This is my first signed email test. If you see it signed, that means I
> hope I will handle next step too.

Looks Good.

UNTRUSTED Good signature from Pierig Vezin (voit foie)
<pierig.vezin at wethica.com>
Key ID: 0x79EA644E / Signed on: 9/19/2008 3:42 AM
Key fingerprint: B8D5 BAEC 39A2 A7A5 7BAF ECD1 2529 96A5 79EA 644E

JOHN ;)
Timestamp: Friday 19 Sep 2008, 06:36  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJI04DXAAoJEBCGy9eAtCsP62kH/i/UMLwCfKJxHoqZ8PtFdVd4
WpVZNMki7tq9XU/SpT5BszdLW/awrMurJ7t8z0P9ygc297r7LPASvC2vxS4ezPni
4SwRgZWRhBNygyC5dMkBwpsKkCcATJq7SaBHzH3ZiErDFLilqNKOjJ4xu8qffIZa
jbSeR0bf34bK7JNAS6G1ki7SXAFWomuIyVYpn0TEzrMFuVCOZ8xvjHQyQrbuHa7r
loGeijJPK/boqP4VMaRbZv+RPvx+osZXENHMCDUfP9XbIwXYVaO4ikG+B8FctR5g
dGGsnaIN2wXGg0IawTSaujsUcvhuw/R7dON1957y+/L+3GK8Tcb1lPyJ7ZKcpd8=
=P29X
-----END PGP SIGNATURE-----

From pierig.vezin at wethica.com  Fri Sep 19 05:05:22 2008
From: pierig.vezin at wethica.com (Pierig Vezin)
Date: Fri, 19 Sep 2008 20:05:22 +0800
Subject: [Enigmail] First test
In-Reply-To: <48D380D9.2010403@bellsouth.net>
References: <48D357EA.3010702@wethica.com> <48D380D9.2010403@bellsouth.net>
Message-ID: <48D39582.1010108@wethica.com>

An HTML attachment was scrubbed...
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080919/090a8ee1/attachment.html>

From post at lespocky.de  Fri Sep 19 10:26:43 2008
From: post at lespocky.de (Alexander Dahl)
Date: Fri, 19 Sep 2008 19:26:43 +0200
Subject: [Enigmail] First test
In-Reply-To: <48D39582.1010108@wethica.com>
References: <48D357EA.3010702@wethica.com> <48D380D9.2010403@bellsouth.net>
	<48D39582.1010108@wethica.com>
Message-ID: <0ML29c-1Kgjkt3Gbt-0001Pe@mrelayeu.kundenserver.de>

> It's clear now...

This mail's signature could not be verified here though.

Greets
Alex

-- 
***** http://www.lespocky.de *******************************************
Those who would give up essential Liberty, to purchase
a little temporary Safety, deserve neither Liberty nor Safety.
                                (Benjamin Franklin)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080919/2110ff74/attachment.bin>

From jamiet at fastmail.fm  Thu Sep 18 16:16:24 2008
From: jamiet at fastmail.fm (Jamie T.)
Date: Thu, 18 Sep 2008 19:16:24 -0400
Subject: [Enigmail] A test email,
 as per the Enigmail Quick Start Guide ( Jamie T. )
In-Reply-To: <mailman.3.1221764401.96053.enigmail@mozdev.org>
References: <mailman.3.1221764401.96053.enigmail@mozdev.org>
Message-ID: <48D2E148.9050408@fastmail.fm>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Test e-mail. Thanks.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjS4UgACgkQxfR+IrUaMifKAgCfUrgbshSLcTaXxgg7rRa7EO+a
/gcAn3/i4o/XhxjhsdGSLcvcjVuYLY/p
=7Udm
-----END PGP SIGNATURE-----

From jamiet at fastmail.net  Thu Sep 18 16:19:40 2008
From: jamiet at fastmail.net (Jamie T.)
Date: Thu, 18 Sep 2008 19:19:40 -0400
Subject: [Enigmail] A test email,
 as per the Enigmail Quick Start Guide ( Jamie T. )
In-Reply-To: <48D2E148.9050408@fastmail.fm>
References: <mailman.3.1221764401.96053.enigmail@mozdev.org>
	<48D2E148.9050408@fastmail.fm>
Message-ID: <48D2E20C.1060503@fastmail.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

My mistake. Sent previous e-mail via my alternate e-mail address (sorry).

Jamie T. wrote:
> Test e-mail. Thanks.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjS4gwACgkQ062ozKE5Ob8OswCgnBGB3QlyzplArQsiGG87P3kf
GB0An3VW00NTboVfVqgby0GIL6E67IAf
=51+L
-----END PGP SIGNATURE-----

From bblackmoor at secure.blackgate.net  Fri Sep 19 15:58:05 2008
From: bblackmoor at secure.blackgate.net (Brandon Blackmoor)
Date: Fri, 19 Sep 2008 18:58:05 -0400
Subject: [Enigmail] A test email,
 as per the Enigmail Quick Start Guide ( Jamie T. )
In-Reply-To: <48D2E148.9050408@fastmail.fm>
References: <mailman.3.1221764401.96053.enigmail@mozdev.org>
	<48D2E148.9050408@fastmail.fm>
Message-ID: <48D42E7D.5030907@secure.blackgate.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Jamie T. wrote:
> Test e-mail. Thanks.

OpenPGP Security Info

UNTRUSTED Good signature from Jamie T. <jamiet at fastmail.fm>
Key ID: 0xB51A3227 / Signed on: 2008-09-18 19:16
Key fingerprint: FAAD 088C 51DE 646B DCD2 F55A C5F4 7E22 B51A 3227

- --
bblackmoor at secure.blackgate.net
2008-09-19

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjULn0ACgkQAGkWiMCbp25J5gCfV/aMtFnbOrR40BdfNSy59AVu
imwAoL2vSicoRxBCw78Xz6UfU1t+1MOi
=N14k
-----END PGP SIGNATURE-----

From bblackmoor at secure.blackgate.net  Fri Sep 19 15:58:10 2008
From: bblackmoor at secure.blackgate.net (Brandon Blackmoor)
Date: Fri, 19 Sep 2008 18:58:10 -0400
Subject: [Enigmail] A test email,
 as per the Enigmail Quick Start Guide ( Jamie T. )
In-Reply-To: <48D2E20C.1060503@fastmail.net>
References: <mailman.3.1221764401.96053.enigmail@mozdev.org>	<48D2E148.9050408@fastmail.fm>
	<48D2E20C.1060503@fastmail.net>
Message-ID: <48D42E82.6080400@secure.blackgate.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Jamie T. wrote:
> My mistake. Sent previous e-mail via my alternate e-mail address (sorry).

gpgkeys: key A13939BF not found on keyserver
gpg: requesting key A13939BF from hkp server pool.sks-keyservers.net
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0

- --
bblackmoor at secure.blackgate.net
2008-09-19

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjULoIACgkQAGkWiMCbp24suACgwZ+lcbanukdrpaKeMpYGAwDJ
wUUAoIh0NX3iffSkoE/Ip/+z1RcAWxYk
=p13R
-----END PGP SIGNATURE-----

From bblackmoor at secure.blackgate.net  Fri Sep 19 16:20:44 2008
From: bblackmoor at secure.blackgate.net (Brandon Blackmoor)
Date: Fri, 19 Sep 2008 19:20:44 -0400
Subject: [Enigmail] click the pen icon for details
Message-ID: <48D433CC.3040007@secure.blackgate.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

When a signed or encrypted email arrives, the little one-line status
message above the header (which I love, by the way -- excellent UI
design) sayd "click the pen icon for details".

I do not have a "pen icon", as far as I have been able to determine. I
do have an icon of an envelope, and when I click that, I get some kind
of message either prompting me to download a key or telling me that the
signature is good, etc.

Am I clicking the wrong thing?


- --
bblackmoor at secure.blackgate.net
2008-09-19
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjUM8wACgkQAGkWiMCbp25n9QCgtFruj63QOwnFauBDuuzN7pX+
gQYAnRLGhWGjkqxTH6lYZOdLywZ8WqKG
=9U3A
-----END PGP SIGNATURE-----

From jmoore3rd at bellsouth.net  Fri Sep 19 20:09:23 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Fri, 19 Sep 2008 23:09:23 -0400
Subject: [Enigmail] click the pen icon for details
In-Reply-To: <48D433CC.3040007@secure.blackgate.net>
References: <48D433CC.3040007@secure.blackgate.net>
Message-ID: <48D46963.9060908@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Brandon Blackmoor wrote:

> I do not have a "pen icon", as far as I have been able to determine. I
> do have an icon of an envelope, and when I click that, I get some kind
> of message either prompting me to download a key or telling me that the
> signature is good, etc.
> 
> Am I clicking the wrong thing?

Look in the very lower Right corner of the Message Screen.  There is a
Pen icon & a Key icon.  Pen = Signature & Key = Encryption.

You do not need the Header to be Open to view these.

HTH

JOHN ;)
Timestamp: Friday 19 Sep 2008, 23:09  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJI1GliAAoJEBCGy9eAtCsPEgMH/09FUwVluTPyx7kOOjJnTKFm
64pomXkGg6Wr4i121L0k7+rDsxLga0bO3u0gutPaSpwvaWkUE4C1edOHweIe1JCx
AcsdHGuJMpVD4hvEq8IIhVhjLh5s+b/zyn8h5kjaOMj8ANhdTk80KecQAs0wZCeI
BjSZATqk6tbpCA4mfw3qS3UlRv/3kdQKTByl8sOPZO48VqKm8DbQ+yaBIq7ed0g4
mya1sFlCefN+XvYrBDnINIhmRbKd3XXF6JZqzjKBkmbQlK4X4aMDd8JDP6p8psvJ
xfIhS98XNDMtTMLHtglKbKfHyYYJ8LXG3qt2tfydhxiE9CEdKlctQr8wivA4Y9g=
=2VPU
-----END PGP SIGNATURE-----

From faramir.cl at gmail.com  Fri Sep 19 22:19:19 2008
From: faramir.cl at gmail.com (Faramir)
Date: Sat, 20 Sep 2008 01:19:19 -0400
Subject: [Enigmail] click the pen icon for details
In-Reply-To: <48D433CC.3040007@secure.blackgate.net>
References: <48D433CC.3040007@secure.blackgate.net>
Message-ID: <48D487D7.9080408@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Brandon Blackmoor escribi?:
> When a signed or encrypted email arrives, the little one-line status
> message above the header (which I love, by the way -- excellent UI
> design) sayd "click the pen icon for details".

  I agree, it is a very good design.

> I do not have a "pen icon", as far as I have been able to determine. I
> do have an icon of an envelope, and when I click that, I get some kind

   At some point, the "pen icon" became an envelope. However, you can
still find the pen icon in the right lower corner of Thunderbird... it
is small, but I still have it.

> Am I clicking the wrong thing?

  No, the envelope has the same function than the pen...

  Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJI1IfXAAoJEMV4f6PvczxAztIH/A9hY68ZdotcYrGr/YaMDPi8
+/pS5fjRla3wfb9LlhMMoZzEIpCzz0JXNEwuUbnsBR9racCfbLyp3kpWtYiMEeJf
k9PfZQ/RQf17OZlVq55YDXGcd6gA9c+U7kNAx9/mX5QrfG8SPDovOm0JJvqFwdhO
C+9pt8CQBeyqpt5RdbVsmIZolG0yQnZ8AWXh0WPQnghVL5dvp8eUA8jdxMEJ+KNK
eR24DuMKWPUvLcxMhowJZeXeDupimUZCG4NuPj1W7z8l+MEvtjU9tZWWFA0Dy/fw
beNUq8pCtFDJ59LicCZ5hMK2EDZoMtlriAuMbk24hNPUsEg5cu28d2FS9yeJH24=
=SO1s
-----END PGP SIGNATURE-----

From rjh at sixdemonbag.org  Fri Sep 19 22:53:14 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Sat, 20 Sep 2008 00:53:14 -0500
Subject: [Enigmail] click the pen icon for details
In-Reply-To: <48D433CC.3040007@secure.blackgate.net>
References: <48D433CC.3040007@secure.blackgate.net>
Message-ID: <48D48FCA.2060802@sixdemonbag.org>

Brandon Blackmoor wrote:
> I do not have a "pen icon", as far as I have been able to determine. I
> do have an icon of an envelope, and when I click that, I get some kind
> of message either prompting me to download a key or telling me that the
> signature is good, etc.
> 
> Am I clicking the wrong thing?

No, but you _are_ finding an ideal UI enhancement.  :)  This is
something that should probably be added to Bugzilla.  Would you like to
do this, or shall I?

From bblackmoor at secure.blackgate.net  Sat Sep 20 11:47:27 2008
From: bblackmoor at secure.blackgate.net (Brandon Blackmoor)
Date: Sat, 20 Sep 2008 14:47:27 -0400
Subject: [Enigmail] click the pen icon for details
In-Reply-To: <48D48FCA.2060802@sixdemonbag.org>
References: <48D433CC.3040007@secure.blackgate.net>
	<48D48FCA.2060802@sixdemonbag.org>
Message-ID: <48D5453F.1090601@secure.blackgate.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Robert J. Hansen wrote:
> 
> This is something that should probably be added 
> to Bugzilla.  Would you like to do this, or shall I?


I would rather that you did it.


- --
bblackmoor at secure.blackgate.net
2008-09-20
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkjVRT8ACgkQAGkWiMCbp2690QCghVvqHf2qxE/9SXMEnQN7sMum
xksAoJK5D2FE2f/HLWQWz2URO4fH+U8e
=OgxS
-----END PGP SIGNATURE-----

From lesterbush at hotmail.com  Sat Sep 20 15:02:06 2008
From: lesterbush at hotmail.com (Lester Bush)
Date: Sat, 20 Sep 2008 18:02:06 -0400
Subject: [Enigmail] I need help with something please
Message-ID: <BAY104-W122034B7EE1A3F2DD733DCDA490@phx.gbl>


I've forgotten my password. Can anyone help me with that?


Lester

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080920/fa9939e0/attachment.html>

From John at Mozilla-Enigmail.org  Sat Sep 20 15:38:10 2008
From: John at Mozilla-Enigmail.org (John Clizbe)
Date: Sat, 20 Sep 2008 17:38:10 -0500
Subject: [Enigmail] I need help with something please
In-Reply-To: <BAY104-W122034B7EE1A3F2DD733DCDA490@phx.gbl>
References: <BAY104-W122034B7EE1A3F2DD733DCDA490@phx.gbl>
Message-ID: <48D57B52.9080605@Mozilla-Enigmail.org>

Lester Bush wrote:
> I've forgotten my password. Can anyone help me with that?

You are out of luck. There is no way to recover a passphrase short of brute force.


-- 
John P. Clizbe                      Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net  or
     mailto:pgp-public-keys at gingerbear.net?subject=HELP

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 679 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080920/16734f07/attachment.bin>

From ian at chennell.com  Sat Sep 20 17:06:12 2008
From: ian at chennell.com (Ian Chennell)
Date: Sun, 21 Sep 2008 10:06:12 +1000
Subject: [Enigmail] I need help with something please
In-Reply-To: <BAY104-W122034B7EE1A3F2DD733DCDA490@phx.gbl>
References: <BAY104-W122034B7EE1A3F2DD733DCDA490@phx.gbl>
Message-ID: <48D58FF4.5050002@chennell.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Lester,

Try and remember as much about your password as you can, like how many
characters did it have, do you remember any of the characters at all
like what did it start or end with, was it just letters, or letters and
numbers, or did it have special characters in it, etc.  If you can't
remember specifics, try to remember general things - eg if you can't
remember exactly how long it was, can you identify a definite size range
you are certain the password lies within - I know it was longer than 6
characters, but I also know it wasn't longer than 9, that sort of thing.

Also of equal value is identifying things that you know the password
definitely WASN'T, eg I know it definitely didn't start with an A, E, I,
O, or U, or Z or X, or ... or a number... or a special character...

All these pieces of info can narrow down a brute force cracking process
by years, literally, to something that is perhaps worth having a go at
with a password cracking program, so all is not yet lost.  Whatever you
remember, WRITE IT DOWN IMMEDIATELY, so you don't forget that info as
well - the mind gets hazy very quickly about this stuff!!

Cheers, Ian



Lester Bush wrote:
> I've forgotten my password. Can anyone help me with that?
> 
> 
> Lester
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Enigmail mailing list
> Enigmail at mozdev.org
> https://www.mozdev.org/mailman/listinfo/enigmail




-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFI1Y/zF6C1DeOn3gsRApWNAJ9JW7DnuKaKruMPiQ+t5kezl9M4DwCguOdx
FHTPBQR5BTQh0ZGiruOSeNo=
=0LIJ
-----END PGP SIGNATURE-----

From gillespie.jp at gmail.com  Sat Sep 20 17:09:29 2008
From: gillespie.jp at gmail.com (James Gillespie)
Date: Sat, 20 Sep 2008 17:09:29 -0700
Subject: [Enigmail] Hey all; quick question
In-Reply-To: <48C31151.2040408@bellsouth.net>
References: <48C304B4.4040001@gmail.com> <48C31151.2040408@bellsouth.net>
Message-ID: <48D590B9.7020706@gmail.com>

John W. Moore III wrote:
>
> You may Set Thunderbird to Compose in either Plaintext or HTML.  In HTML
> the Word Wrap settings will not be enabled.  Whichever way You Set
> Thunderbird You may easily switch between the 2 on-the-fly by holding
> down the 'Shift' Key while clicking 'Write' or 'Reply'.
>
Extravagant thanks for that tip!
-- 
James P. Gillespie


===================================


From faramir.cl at gmail.com  Sat Sep 20 19:12:58 2008
From: faramir.cl at gmail.com (Faramir)
Date: Sat, 20 Sep 2008 22:12:58 -0400
Subject: [Enigmail] I need help with something please
In-Reply-To: <BAY104-W122034B7EE1A3F2DD733DCDA490@phx.gbl>
References: <BAY104-W122034B7EE1A3F2DD733DCDA490@phx.gbl>
Message-ID: <48D5ADAA.70000@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Lester Bush escribi?:
> I've forgotten my password. Can anyone help me with that?

  If you forgot the password of your private key... that is very bad...

  I hope you have the revocation certificate to revoke the key, since
unless you can remember the password, it is very unlikely you can
retrieve it. However, if you know how the password should be, maybe you
can do some kind of dictionary attack, using some mutations, in case you
mistyped the password... but a bruteforce attack not knowing anything
about the password, unless you are using a very short password, is not
an option.

  Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJI1a2qAAoJEMV4f6PvczxAjj4H+wX4owh2VTP7Cu5hHK1BWS//
bqI3PjKn19zj6mesaA+TDIMnqmUSXVbu0Z/rJyJkj7FICyq+u4ndEOhMmAdqLE7H
lJzyDHavi9CXUXBDyrOUxLHyOm1330NwcH3w/XZ9qp+A7Sd6beaWq9e+4G/o52zV
FTyu7Sv6ogdkGzrVpXPvtPRlfDIR0C/q0zzEh5EW6JRsF+f7myfrc8onhWC8vUea
QA4hLTc1Fa8MPakoQnXWmcg1H45m93wk/+TqJ4/Yo24mfsS9awahh1q4oz1vD9kd
NEqH5l6j+kVyjaApLesstGLJFUkqGjJaGa9OEEkg4l6tHjYjmBXvs07oOV7l6rk=
=xB8G
-----END PGP SIGNATURE-----

From faramir.cl at gmail.com  Sat Sep 20 19:58:32 2008
From: faramir.cl at gmail.com (Faramir)
Date: Sat, 20 Sep 2008 22:58:32 -0400
Subject: [Enigmail] I need help with something please
In-Reply-To: <48D58FF4.5050002@chennell.com>
References: <BAY104-W122034B7EE1A3F2DD733DCDA490@phx.gbl>
	<48D58FF4.5050002@chennell.com>
Message-ID: <48D5B858.4060100@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Ian Chennell escribi?:

> All these pieces of info can narrow down a brute force cracking process
> by years, literally, to something that is perhaps worth having a go at
> with a password cracking program, so all is not yet lost.  Whatever you
> remember, WRITE IT DOWN IMMEDIATELY, so you don't forget that info as
> well - the mind gets hazy very quickly about this stuff!!

  Exactly, you can make a custom dictionary, or use masks to save a lot
of time...

  By the way, does somebody know a program capable of doing that with a
GPG key? I know a program to audit passwords used by users in
applications like forums, where you know the salt and other things...
but I don't think it can be used against a GPG key.

  Once I had the same problem, I knew the password, but I forgot the
"mutation" I had used on it... fortunately, I found a copy of the key
which was using the unmodified password...

  Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJI1bhXAAoJEMV4f6PvczxAHrgH+gLavayrhGcfnAvH2LjX+S81
NYCz46eE2z2bp2RXV7Vjo//CAgbgdQC138HG1dorMUIga8w/6Po9ZAUzP7n0+Aag
A0BWIsyXJSExSgKa+S0Ns4HjwHw9V1c2KENQcJwkqpLpzF9S36+wwSTbJJyDezvI
Vwl4h1oHSYaqtQzmkRGr1QjQMwjc5EloUxqEaHirUkx5NDfyVjFjnzvSrDfhGeXA
Rou9mO6Fmilm1yel2B0jie59C0bxjKeb0V0ORtTGy7bw9j/jUKSASixNSLRUEnNM
o9Fy9YzkdB/TO8Jvydknl9b9hR9xqAwzy++Dm351nzQvGkcIzotsmrgHayBa/Xg=
=xhgo
-----END PGP SIGNATURE-----

From lesterbush at hotmail.com  Sat Sep 20 14:58:13 2008
From: lesterbush at hotmail.com (Lester Bush)
Date: Sat, 20 Sep 2008 17:58:13 -0400
Subject: [Enigmail] I need help with something please
Message-ID: <BAY104-W3062E99B24536A8C0C8F4BDA490@phx.gbl>


I know that I'm probably not going to be able to get any help with this,
but I've forgotten my password. Can anyone help me with this?


Lester

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080920/98050650/attachment.html>

From enigmail at devek.us  Sat Sep 20 15:46:35 2008
From: enigmail at devek.us (enigmail at devek.us)
Date: Sat, 20 Sep 2008 17:46:35 -0500 (CDT)
Subject: [Enigmail] Sender under duress
Message-ID: <44461.68.12.164.12.1221950795.squirrel@qmail.onlineok.com>

Is there some way that a person signing a message with enigmail can
indicate that they are under duress so that only the recipient will know?
Perhaps by using a different password or some other way?

I would have posted this on the forum, but trying to solve the captcha
gave me a headache....

-Me


From alaric at metrocast.net  Sun Sep 21 07:52:33 2008
From: alaric at metrocast.net (Phil Stracchino)
Date: Sun, 21 Sep 2008 10:52:33 -0400
Subject: [Enigmail] Sender under duress
In-Reply-To: <44461.68.12.164.12.1221950795.squirrel@qmail.onlineok.com>
References: <44461.68.12.164.12.1221950795.squirrel@qmail.onlineok.com>
Message-ID: <48D65FB1.4010607@metrocast.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

enigmail at devek.us wrote:
> Is there some way that a person signing a message with enigmail can
> indicate that they are under duress so that only the recipient will know?
> Perhaps by using a different password or some other way?
> 
> I would have posted this on the forum, but trying to solve the captcha
> gave me a headache....

The only ways I can think of are:
1.  use an alternate key designated in advance for that purpose;
2.  use pre-agreed duress keywords in the message.


- --
  Phil Stracchino, CDK#2     DoD#299792458     ICBM: 43.5607, -71.355
  alaric at caerllewys.net   alaric at metrocast.net   phil at co.ordinate.org
         Renaissance Man, Unix ronin, Perl hacker, Free Stater
                 It's not the years, it's the mileage.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEAREIAAYFAkjWX7EACgkQ0DfOju+hMkkaCgCg5yhg3Lhz3kKFkaBVNraCFxtU
etoAnj1uyAGw4CHPdbS7DADArF4wQEwG
=EJsk
-----END PGP SIGNATURE-----

From rjh at sixdemonbag.org  Sun Sep 21 09:03:15 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Sun, 21 Sep 2008 11:03:15 -0500
Subject: [Enigmail] Sender under duress
In-Reply-To: <44461.68.12.164.12.1221950795.squirrel@qmail.onlineok.com>
References: <44461.68.12.164.12.1221950795.squirrel@qmail.onlineok.com>
Message-ID: <48D67043.8040005@sixdemonbag.org>

enigmail at devek.us wrote:
> Is there some way that a person signing a message with enigmail can
> indicate that they are under duress so that only the recipient will know?

It generally requires having a pre-arranged signal.  For instance, using
the word "wacky" might be the "I'm under duress" signal -- the word
needs to be common enough that the person applying pressure won't think
it's strange, but sufficiently uncommon that it's not something you'd
normally use in everyday communications.


From jmoore3rd at bellsouth.net  Sun Sep 21 09:23:10 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Sun, 21 Sep 2008 12:23:10 -0400
Subject: [Enigmail] Sender under duress
In-Reply-To: <48D67043.8040005@sixdemonbag.org>
References: <44461.68.12.164.12.1221950795.squirrel@qmail.onlineok.com>
	<48D67043.8040005@sixdemonbag.org>
Message-ID: <48D674EE.8080700@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Robert J. Hansen wrote:
> enigmail at devek.us wrote:
>> Is there some way that a person signing a message with enigmail can
>> indicate that they are under duress so that only the recipient will know?
> 
> It generally requires having a pre-arranged signal.  For instance, using
> the word "wacky" might be the "I'm under duress" signal -- the word
> needs to be common enough that the person applying pressure won't think
> it's strange, but sufficiently uncommon that it's not something you'd
> normally use in everyday communications.

This is an excellent example of the _difference_ between 'Codes' &
'Ciphers'.  GnuPG is a Cipher system.  A Code is where a specific
symbol/word/phrase can mean any pre-arranged message.

Codes are extensively used in the Shipping Industry and were common when
Telegrams were priced by the word.  Today, most use of Code is deployed
in the form of embedded words/phrases in broadcast radio signals where
'interactive' [2-way] communication is infeasible, impracticable,
impossible or suicidal.

The 'Code' most familiar to folks today are the Plays/Signals conveyed
to teams in Sports Events.  Whole chains of human behavior are
designated by a simple Number or pre-arranged 'wave of the hands/arms'.

JOHN ;)
Timestamp: Sunday 21 Sep 2008, 12:23  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJI1nTrAAoJEBCGy9eAtCsPLB4H/2nWXV44zzarfF0w0pQWMq/1
TSVN/j8XgHuN8Tws1iKazpPQNmlwAAtAODrvQE4aqsiBqCLpCPXv0CbEyWotzT/M
YK6bjKAMf/gl9e0gMei2u+LC4DaZwdFlNLkdHxvFaZwS/ee0sAIGpewtDGgFKQRA
zfJPOehc7WYNDlH5j58xK/CM1huk3Jmz4Sw8bkk5hrq1Hz8unwmJGNoiOk+Al7WU
NaBAhewjiXqX4CVj3hoQ/xFYmG8Kuh8psnoLFBg5LY8axsHoBUIta7KW1zrWDdns
yYWnbyQm1h6enHsszU9dc0dO9qE+KXoluvbIGaA1nb6ttAz8a1eZxiuILbvUoUg=
=0wmK
-----END PGP SIGNATURE-----

From brienmn at gmail.com  Mon Sep 22 19:26:32 2008
From: brienmn at gmail.com (Matthew Brien)
Date: Mon, 22 Sep 2008 22:26:32 -0400
Subject: [Enigmail] Signature Test
Message-ID: <48D853D8.9040507@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

I've uploaded my key to the key servers several hours ago. Hopefully it
should be available to everybody by now. Lemme know it checks out.

Matt
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iF4EAREIAAYFAkjYU9cACgkQPzr5svLo18FuhAD8DmoLYIA7iMbkVcNMN8v+g7HK
5TdxJ2JtPlbqjeTj1NkA/juZkdDZ6e0/MBSwAK0euBkKq+np33yH5F79XuDlCFmb
=sKLs
-----END PGP SIGNATURE-----

From pierig.vezin at wethica.com  Mon Sep 22 19:31:37 2008
From: pierig.vezin at wethica.com (Pierig Vezin)
Date: Tue, 23 Sep 2008 10:31:37 +0800
Subject: [Enigmail] Signature Test
In-Reply-To: <48D853D8.9040507@gmail.com>
References: <48D853D8.9040507@gmail.com>
Message-ID: <48D85509.1080105@wethica.com>

An HTML attachment was scrubbed...
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080923/61f1161e/attachment.html>

From John at Mozilla-Enigmail.org  Mon Sep 22 19:32:36 2008
From: John at Mozilla-Enigmail.org (John Clizbe)
Date: Mon, 22 Sep 2008 21:32:36 -0500
Subject: [Enigmail] Signature Test
In-Reply-To: <48D853D8.9040507@gmail.com>
References: <48D853D8.9040507@gmail.com>
Message-ID: <48D85544.2080203@Mozilla-Enigmail.org>

Matthew Brien wrote:
> I've uploaded my key to the key servers several hours ago. Hopefully it
> should be available to everybody by now. Lemme know it checks out.

You did well.

OpenPGP Security Info

UNTRUSTED Good signature from Matthew Brien <brienmn at gmail.com>
Key ID: 0xF2E8D7C1 / Signed on: 9/22/2008 9:26 PM
Key fingerprint: 5979 11DB E833 1A0A 14C7 8669 3F3A F9B2 F2E8 D7C1

-- 
John P. Clizbe                      Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net  or
     mailto:pgp-public-keys at gingerbear.net?subject=HELP

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 679 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080922/6a2d7ffc/attachment.bin>

From jmoore3rd at bellsouth.net  Mon Sep 22 20:26:54 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Mon, 22 Sep 2008 23:26:54 -0400
Subject: [Enigmail] Signature Test
In-Reply-To: <48D853D8.9040507@gmail.com>
References: <48D853D8.9040507@gmail.com>
Message-ID: <48D861FE.6000306@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Matthew Brien wrote:
> I've uploaded my key to the key servers several hours ago. Hopefully it
> should be available to everybody by now. Lemme know it checks out.

UNTRUSTED Good signature from Matthew Brien <brienmn at gmail.com>
Key ID: 0xF2E8D7C1 / Signed on: 9/22/2008 10:26 PM
Key fingerprint: 5979 11DB E833 1A0A 14C7 8669 3F3A F9B2 F2E8 D7C1

Sorry if My Reply is a 'Johnny-Come-Lately' one but this has been a
hectic Day for Moi.

JOHN ;)
Timestamp: Monday 22 Sep 2008, 23:26  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJI2GH9AAoJEBCGy9eAtCsPGMsH/17kpbmmOyNpx87qYU32Zdr4
Q33WIlQmyEoxhfq6cWyGMS48OVuyOLaNgt/L7khsAkMVHJi+Dek287FoKfgDewtM
/bgsy+jggKqXXgMYpFaxv1Wpv6Ka0dw6eT2Dw9WTRjhC+GDPTMGtQHQWUhOLVfFJ
C1RRUotpm7tm6LinASVvOFiB9wCzmdjwZMllmHFE1BHAyl6CmelyPqBSTicETIhY
4h0GrdLAmkIfXvK2kd/ryFrxW6s2yxGe0kEVSZ6+OnIRWNdczNpu3bWYIUzvdYOv
YjNOGTvFDtd9nSnAyRDmbdWBTHuh/on+q4BVkYrZ9VGz2xEzTcCrdtdcEUPEH7Y=
=MYaT
-----END PGP SIGNATURE-----

From brienmn at gmail.com  Tue Sep 23 03:58:28 2008
From: brienmn at gmail.com (Matthew Brien)
Date: Tue, 23 Sep 2008 06:58:28 -0400
Subject: [Enigmail] Signature Test
In-Reply-To: <48D853D8.9040507@gmail.com>
References: <48D853D8.9040507@gmail.com>
Message-ID: <48D8CBD4.9010108@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Thank you all. I have played around with PGP for a number of years,
mainly for encrypted disk images. This is the first time that I've used
it for signing messages, although I assume that encrypting them would be
just as easy.

Enigmail with Thunderbird is a pretty slick combination. Wish I had
known about it earlier. With authentication and encryption being so
easy, it's unfortunate that more people don't utilize it.

Matt
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iF4EAREIAAYFAkjYy9MACgkQPzr5svLo18EpfQEAkCf9IS77g6OZWODQ2ATJdJzu
vlKlPfZea0s4CCOpVnYBAJac9Kw6zhCPNgkA5F/ptHCiQ+pG+IGX6d2OVlOPlzvv
=Cs+8
-----END PGP SIGNATURE-----

From John at Mozilla-Enigmail.org  Tue Sep 23 14:21:43 2008
From: John at Mozilla-Enigmail.org (John Clizbe)
Date: Tue, 23 Sep 2008 16:21:43 -0500
Subject: [Enigmail] Signature Test
In-Reply-To: <48D8CBD4.9010108@gmail.com>
References: <48D853D8.9040507@gmail.com> <48D8CBD4.9010108@gmail.com>
Message-ID: <48D95DE7.8040408@Mozilla-Enigmail.org>

Matthew Brien wrote:
> Thank you all. I have played around with PGP for a number of years,
> mainly for encrypted disk images. This is the first time that I've used
> it for signing messages, although I assume that encrypting them would be
> just as easy.

Correctly functioning

OpenPGP Security Info

UNTRUSTED Good signature from Matthew Brien <brienmn at gmail.com>
Key ID: 0xF2E8D7C1 / Signed on: 9/23/2008 5:58 AM
Key fingerprint: 5979 11DB E833 1A0A 14C7 8669 3F3A F9B2 F2E8 D7C1
-- 
John P. Clizbe                      Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net  or
     mailto:pgp-public-keys at gingerbear.net?subject=HELP

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 679 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080923/c8b44239/attachment.bin>

From nickhally at gmail.com  Thu Sep 25 09:11:02 2008
From: nickhally at gmail.com (Nick)
Date: Thu, 25 Sep 2008 09:11:02 -0700
Subject: [Enigmail] enigmail test
Message-ID: <48DBB816.4090501@gmail.com>

Never done this before except for sending myself an email. I uploaded my 
public key to a key server (at least I hope I did).

I've got a question, if I sign a message and someone who doesn't have 
OpenPGP or whatever, they can still read my messages right? It's only if 
I encrypt it that they can't see them?

Cheers,

Nick

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 260 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080925/8519d4a5/attachment.bin>

From rasmith1959 at yahoo.com  Wed Sep 24 16:23:38 2008
From: rasmith1959 at yahoo.com (Roy Smith)
Date: Wed, 24 Sep 2008 18:23:38 -0500
Subject: [Enigmail] enigmail test
In-Reply-To: <48DBB816.4090501@gmail.com>
References: <48DBB816.4090501@gmail.com>
Message-ID: <48DACBFA.7050104@yahoo.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Nick wrote:
> Never done this before except for sending myself an email. I
> uploaded my public key to a key server (at least I hope I did).
>
> I've got a question, if I sign a message and someone who doesn't
> have OpenPGP or whatever, they can still read my messages right?
> It's only if I encrypt it that they can't see them?
>

Congratulations, it works!  Yes you're correct in your assumption that
signing a message the recipient will be able to read it.  They'll just
see a block of text at the bottom of your message and wonder what that is.

- --


Roy Smith


I use Firefox because I want to use software that complies
with Web standards.  See <http://www.mozilla.org/>.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 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=RMtf
-----END PGP SIGNATURE-----


From darylstyrk at gmail.com  Wed Sep 24 16:25:07 2008
From: darylstyrk at gmail.com (Daryl Styrk)
Date: Wed, 24 Sep 2008 19:25:07 -0400
Subject: [Enigmail] enigmail test
In-Reply-To: <48DBB816.4090501@gmail.com>
References: <48DBB816.4090501@gmail.com>
Message-ID: <48DACC53.3020706@gmail.com>

Nick,
That is correct.  Everything looks good on this end.

OpenPGP Security Info

UNTRUSTED Good signature from Nick <nickhally at gmail.com>
Key ID: 0xCC5EBB5E / Signed on: 09/25/2008 12:11 PM
Key fingerprint: C892 495D D1E6 9B0F 00DA 8D23 E55F 8832 CC5E BB5E



Nick wrote:
> Never done this before except for sending myself an email. I uploaded my
> public key to a key server (at least I hope I did).
> 
> I've got a question, if I sign a message and someone who doesn't have
> OpenPGP or whatever, they can still read my messages right? It's only if
> I encrypt it that they can't see them?
> 
> Cheers,
> 
> Nick
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Enigmail mailing list
> Enigmail at mozdev.org
> https://www.mozdev.org/mailman/listinfo/enigmail

From jmoore3rd at bellsouth.net  Wed Sep 24 16:26:36 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Wed, 24 Sep 2008 19:26:36 -0400
Subject: [Enigmail] enigmail test
In-Reply-To: <48DBB816.4090501@gmail.com>
References: <48DBB816.4090501@gmail.com>
Message-ID: <48DACCAC.9070307@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Nick wrote:
> Never done this before except for sending myself an email. I uploaded my
> public key to a key server (at least I hope I did).

You must have done it correctly.

UNTRUSTED Good signature from Nick <nickhally at gmail.com>
Key ID: 0xCC5EBB5E / Signed on: 9/25/2008 12:11 PM
Key fingerprint: C892 495D D1E6 9B0F 00DA 8D23 E55F 8832 CC5E BB5E

> I've got a question, if I sign a message and someone who doesn't have
> OpenPGP or whatever, they can still read my messages right? It's only if
> I encrypt it that they can't see them?

Correct.  Of course, unless they had an OpenPGP installation it is
unlikely that they would have a Public Key to encrypt to.

JOHN ;)
Timestamp: Wednesday 24 Sep 2008, 19:26  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4824: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJI2syrAAoJEBCGy9eAtCsPLUEH/RTA1MDaT0rKCZBqLj005jFh
CKEEhe4R3udrYwOGBkQvh496QjmEZlun61uUcW5sVXcnReG0zqZdy2dY2kVjMlyZ
ZM25ex2pRz9CISKgOT/COjqaUvTBoSpCz3SL2Ii2DWujoseOCuObTWBJJjoAbTZY
rur+J3hz6PtDrALUNTrFoQzane7Ahbgv+GKJWAyecz8pWi0k93GgdcVdcb7jIg4k
5+zIYRT3CTxN+wFVRT4wk7qhwmTpxEgl8NDu1U4Bpbc09V5jZyQM/wEyMmVJqBWA
NObo0YJzdjNAxH/qu24N/h/Ewhe7Z3cGevZDmKw2pF35AvDiUgya7j6WmBfoenU=
=IsdW
-----END PGP SIGNATURE-----

From lfarkas at lfarkas.org  Thu Sep 25 07:21:14 2008
From: lfarkas at lfarkas.org (Farkas Levente)
Date: Thu, 25 Sep 2008 16:21:14 +0200
Subject: [Enigmail] enigmail not working for me
Message-ID: <48DB9E5A.8090008@lfarkas.org>

hi,
i try enigmail in fedora-9 with
gnupg-1.4.9-1.fc9.i386
gnupg2-2.0.9-1.fc9.i386
but none of them working. i've got the attached bug. what can be the
problem?
thanks for your help in advance.
yours.

-- 
  Levente                               "Si vis pacem para bellum!"
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: enigcmd.txt
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080925/83ae9ab1/attachment-0004.txt>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: enigdbug.txt
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080925/83ae9ab1/attachment-0005.txt>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: enigenv.txt
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080925/83ae9ab1/attachment-0006.txt>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: enigerr.txt
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080925/83ae9ab1/attachment-0007.txt>

From patrick at mozilla-enigmail.org  Thu Sep 25 07:57:24 2008
From: patrick at mozilla-enigmail.org (Patrick Brunschwig)
Date: Thu, 25 Sep 2008 16:57:24 +0200
Subject: [Enigmail] enigmail not working for me
In-Reply-To: <48DB9E5A.8090008@lfarkas.org>
References: <48DB9E5A.8090008@lfarkas.org>
Message-ID: <48DBA6D4.5030903@mozilla-enigmail.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Farkas Levente wrote:
> hi,
> i try enigmail in fedora-9 with
> gnupg-1.4.9-1.fc9.i386
> gnupg2-2.0.9-1.fc9.i386
> but none of them working. i've got the attached bug. what can be the
> problem?
> thanks for your help in advance.
> yours.

Hi,

The problem is visible here:

/usr/bin/gpg2 --charset utf8  --batch --no-tty --status-fd 2
- --keyserver-options auto-key-retrieve --keyserver
pool.sks-keyservers.net, subkeys.pgp.net, pgp.mit.edu,
ldap://certserver.pgp.com -d --use-agent

GnuPG only accepts exactly 1 keyserver for automatic key retrieval.

Regards,
Patrick
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEVAwUBSNum03cOpHodsOiwAQLuHQf/XOHkhi8MD8rLuRleL0hkpnIISHJVldS8
O96uAIXFX8exf2r7fIfqM8VEffLLv5qi415Bd2m7567me9Hh1bsLtS8PFb03l5Ga
zU2ngfF621NGAUwV+jNUfQi5bNqu8SUdZjPY8uJwemfbJ9u4z2wCvxtb8CkfQXvR
uO4M+LkQCl67t47qulnFahqZ22NzPJqatlMmtacXcDt1iidHgMeIOG+g1gbFYmsY
PI1ML+OpNBFgvt12hwU2y90cDqIzs8QRAUY6HfwF7+qp3knHUbBPRxCw6On4MkWx
y73pdVT16J5hGG7C/vtpYwhQNrjdrTcs1kzeGJm3SD0I9eMVWVGlLA==
=Az80
-----END PGP SIGNATURE-----

From rjh at sixdemonbag.org  Thu Sep 25 08:09:46 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Thu, 25 Sep 2008 11:09:46 -0400
Subject: [Enigmail] Malware targeting GnuPG/PGP Keyrings
Message-ID: <48DBA9BA.9080303@sixdemonbag.org>

Maarten Van Horenbeeck of the SANS Internet Storm Center delivered a
fascinating presentation at this year's SANSFire.  "Is Troy Burning? An
overview of targeted trojan attacks."  (It was a few months ago, but I
just now got a copy of the slides.)

According to Van Horenbeeck, we are now seeing trojans in the wild which
are searching for PGP keyrings, intercepting passphrases, and sending
the whole mess off elsewhere.  The particular one he used in his
presentation was flagged as malware by:

Sophos 4.27
VirusBuster 4.3.26

... Everything else -- AVG, ClamAV, F-Prot, F-Secure, McAfee, Panda,
Symantec, etc. -- gave it a clean bill of health.  (This doesn't
surprise me very much; generally speaking, antivirus software is wildly
overestimated in its ability to keep you safe.)

At present, it does not seem to target GnuPG keyrings.  It seems like
such an obvious and trivial extension, though, that it would be prudent
to assume it already exists.

Please do not panic.  This is not a "the world is on fire!" post.  It's
been common knowledge for years that these sorts of attacks were
possible and it was a matter of time until we saw real-world examples.
All I'm saying is that we're now at that time.



From lfarkas at lfarkas.org  Thu Sep 25 08:17:21 2008
From: lfarkas at lfarkas.org (Farkas Levente)
Date: Thu, 25 Sep 2008 17:17:21 +0200
Subject: [Enigmail] enigmail not working for me
In-Reply-To: <48DBA6D4.5030903@mozilla-enigmail.org>
References: <48DB9E5A.8090008@lfarkas.org>
	<48DBA6D4.5030903@mozilla-enigmail.org>
Message-ID: <48DBAB81.1050500@lfarkas.org>

Patrick Brunschwig wrote:
> Farkas Levente wrote:
>> hi,
>> i try enigmail in fedora-9 with
>> gnupg-1.4.9-1.fc9.i386
>> gnupg2-2.0.9-1.fc9.i386
>> but none of them working. i've got the attached bug. what can be the
>> problem?
>> thanks for your help in advance.
>> yours.
> 
> Hi,
> 
> The problem is visible here:
> 
> /usr/bin/gpg2 --charset utf8  --batch --no-tty --status-fd 2
> --keyserver-options auto-key-retrieve --keyserver
> pool.sks-keyservers.net, subkeys.pgp.net, pgp.mit.edu,
> ldap://certserver.pgp.com -d --use-agent
> 
> GnuPG only accepts exactly 1 keyserver for automatic key retrieval.

i'm not really thing it's cause since it's the default setting in
thunderbird and it was worked earlier:-(
even in the enigmail preferences/keyserver examples show multiple
server:-) just see the screenshot:
http://enigmail.mozdev.org/documentation/advanced.php#keyserver

-- 
  Levente                               "Si vis pacem para bellum!"

From patrick at mozilla-enigmail.org  Thu Sep 25 09:02:20 2008
From: patrick at mozilla-enigmail.org (Patrick Brunschwig)
Date: Thu, 25 Sep 2008 18:02:20 +0200
Subject: [Enigmail] enigmail not working for me
In-Reply-To: <48DBAB81.1050500@lfarkas.org>
References: <48DB9E5A.8090008@lfarkas.org>	<48DBA6D4.5030903@mozilla-enigmail.org>
	<48DBAB81.1050500@lfarkas.org>
Message-ID: <48DBB60C.2030808@mozilla-enigmail.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Farkas Levente wrote:
> Patrick Brunschwig wrote:
>> Farkas Levente wrote:
>>> hi,
>>> i try enigmail in fedora-9 with
>>> gnupg-1.4.9-1.fc9.i386
>>> gnupg2-2.0.9-1.fc9.i386
>>> but none of them working. i've got the attached bug. what can be the
>>> problem?
>>> thanks for your help in advance.
>>> yours.
>> Hi,
>>
>> The problem is visible here:
>>
>> /usr/bin/gpg2 --charset utf8  --batch --no-tty --status-fd 2
>> --keyserver-options auto-key-retrieve --keyserver
>> pool.sks-keyservers.net, subkeys.pgp.net, pgp.mit.edu,
>> ldap://certserver.pgp.com -d --use-agent
>>
>> GnuPG only accepts exactly 1 keyserver for automatic key retrieval.
> 
> i'm not really thing it's cause since it's the default setting in
> thunderbird and it was worked earlier:-(
> even in the enigmail preferences/keyserver examples show multiple
> server:-) just see the screenshot:
> http://enigmail.mozdev.org/documentation/advanced.php#keyserver

I am talking about the value in the LOWER field, not in the upper field.
I'm 100% certain that what you specified doesn't work.

- -Patrick
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEVAwUBSNu2C3cOpHodsOiwAQJo1wgAg+t5aAa1QCYWwVTkSqmhmZnyRx7krXUR
YpUhDGMxo0cQveJtzC+xNKY1RfJJSrDRHJozzkShrKh/SD4QO5RbLtfK8ckXY0P7
WUn+ve1KSJ/aLfs6YvQt1IjQ4QnrQlWuipnTgB684Og/hBMtkkaBNddmgY5Zt9lj
3+XMrXgGYwEfOz3Bk06gqG2sOCK32ZFzcAzZfSLgpc3Hrd3cKg1CZF+rCbyiMU7S
3eZPW1WwT/chsu9DpDBSO+pSzpekXhFQf3Paw/0dqeeV6eH3tXyvJTS8QDqWZnvS
FJoCAXp3vOeSPW8Ch31uH4X1fRQuzB7WnykEcIxRkvPRrkc2D9MHjw==
=NTi3
-----END PGP SIGNATURE-----

From mlisten at hammernoch.net  Thu Sep 25 10:57:42 2008
From: mlisten at hammernoch.net (=?ISO-8859-15?Q?Ludwig_H=FCgelsch=E4fer?=)
Date: Thu, 25 Sep 2008 19:57:42 +0200
Subject: [Enigmail] enigmail test
In-Reply-To: <48DBB816.4090501@gmail.com>
References: <48DBB816.4090501@gmail.com>
Message-ID: <48DBD116.3060106@hammernoch.net>

Hi Nick,

welcome on the list!

Nick wrote on 25.09.2008 18:11 Uhr:
> Never done this before except for sending myself an email. I uploaded my
> public key to a key server (at least I hope I did).

Yes, it's there, I could download it and successfully verify your signature

> I've got a question, if I sign a message and someone who doesn't have
> OpenPGP or whatever, they can still read my messages right?

If you are signing inline, then yes. Such a message will look like this:

>-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

(... Message ...)
>-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

(...)
>-----END PGP SIGNATURE-----

(I added ">" at the beginning of the trigger lines not to confuse enigmail)

If you're using PGP/MIME, then your message text will be in an
attachment, and the signature in another attachment.

The text attachment has no filename bound to it, so an unexperienced
user will not expect your message text in it.

HTH

Ludwig

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 542 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080925/9b8241bc/attachment.bin>

From rjh at sixdemonbag.org  Thu Sep 25 12:56:25 2008
From: rjh at sixdemonbag.org (Robert J. Hansen)
Date: Thu, 25 Sep 2008 15:56:25 -0400
Subject: [Enigmail] Malware targeting GnuPG/PGP Keyrings
In-Reply-To: <20080925193558.GA51515@jabberwocky.com>
References: <48DBA9BA.9080303@sixdemonbag.org>
	<20080925193558.GA51515@jabberwocky.com>
Message-ID: <48DBECE9.2010408@sixdemonbag.org>

David Shaw wrote:
> It seems odd for a malware author to spend time going after such a
> small "target market".  Going after company-wide installs, perhaps?

I would imagine the author thinks people with keyrings are high-value
targets, who will be putting high-value secrets in encrypted mails.  But
that's just a guess on my part.


From wk at gnupg.org  Thu Sep 25 13:46:39 2008
From: wk at gnupg.org (Werner Koch)
Date: Thu, 25 Sep 2008 22:46:39 +0200
Subject: [Enigmail] Malware targeting GnuPG/PGP Keyrings
In-Reply-To: <48DBECE9.2010408@sixdemonbag.org> (Robert J. Hansen's message of
	"Thu, 25 Sep 2008 15:56:25 -0400")
References: <48DBA9BA.9080303@sixdemonbag.org>
	<20080925193558.GA51515@jabberwocky.com>
	<48DBECE9.2010408@sixdemonbag.org>
Message-ID: <87abdwuf68.fsf@wheatstone.g10code.de>

On Thu, 25 Sep 2008 21:56, rjh at sixdemonbag.org said:

> I would imagine the author thinks people with keyrings are high-value
> targets, who will be putting high-value secrets in encrypted mails.  But
> that's just a guess on my part.

Or he just wants to give his web of trust ranking a boost ;-)


Salam-Shalom,

   Werner

-- 
Linux-Kongress 2008 + Hamburg + October 7-10 + www.linux-kongress.org

   Die Gedanken sind frei.  Auschnahme regelt ein Bundeschgesetz.


From dshaw at jabberwocky.com  Thu Sep 25 12:35:58 2008
From: dshaw at jabberwocky.com (David Shaw)
Date: Thu, 25 Sep 2008 15:35:58 -0400
Subject: [Enigmail] Malware targeting GnuPG/PGP Keyrings
In-Reply-To: <48DBA9BA.9080303@sixdemonbag.org>
References: <48DBA9BA.9080303@sixdemonbag.org>
Message-ID: <20080925193558.GA51515@jabberwocky.com>

On Thu, Sep 25, 2008 at 11:09:46AM -0400, Robert J. Hansen wrote:
> Maarten Van Horenbeeck of the SANS Internet Storm Center delivered a
> fascinating presentation at this year's SANSFire.  "Is Troy Burning? An
> overview of targeted trojan attacks."  (It was a few months ago, but I
> just now got a copy of the slides.)
> 
> According to Van Horenbeeck, we are now seeing trojans in the wild which
> are searching for PGP keyrings, intercepting passphrases, and sending
> the whole mess off elsewhere.

Neat.  It's not the first time PGP keyrings have been targeted by
malware, but it does seem like a more effective attack than this
attack back in 1999:

  http://www.internetnews.com/dev-news/article.php/64191

Yep, a Word macro virus.

I wonder, though, how useful is this in practice?  I think encryption
is both useful and very important in society (which is why I work on
GnuPG), but even at my most hopeful, I know that the number of people
who actually use PGP/GPG style encryption are a fraction of a fraction
of a tiny sliver of the number of people who don't.  It seems odd for
a malware author to spend time going after such a small "target
market".  Going after company-wide installs, perhaps?

David

From dshaw at jabberwocky.com  Thu Sep 25 13:29:09 2008
From: dshaw at jabberwocky.com (David Shaw)
Date: Thu, 25 Sep 2008 16:29:09 -0400
Subject: [Enigmail] Malware targeting GnuPG/PGP Keyrings
In-Reply-To: <48DBECE9.2010408@sixdemonbag.org>
References: <48DBA9BA.9080303@sixdemonbag.org>
	<20080925193558.GA51515@jabberwocky.com>
	<48DBECE9.2010408@sixdemonbag.org>
Message-ID: <20080925202909.GF51515@jabberwocky.com>

On Thu, Sep 25, 2008 at 03:56:25PM -0400, Robert J. Hansen wrote:
> David Shaw wrote:
> > It seems odd for a malware author to spend time going after such a
> > small "target market".  Going after company-wide installs, perhaps?
> 
> I would imagine the author thinks people with keyrings are high-value
> targets, who will be putting high-value secrets in encrypted mails.  But
> that's just a guess on my part.

Sure, but the economics of it are interesting.  A tiny fraction of
users even have PGP.  Some fraction of those users use it for mail on
something approaching a regular basis, and some fraction of those
users are putting something that the malware author might care about
in a message.

It's not clear how big or small the fractions are, but the implication
is that the malware author must be very interested in a very few
messages... or the writing and distribution of this particular malware
was so easy that the small target space wasn't a worry... or some
graceful balance in between.

David

From post at lespocky.de  Fri Sep 26 11:20:21 2008
From: post at lespocky.de (Alexander Dahl)
Date: Fri, 26 Sep 2008 20:20:21 +0200
Subject: [Enigmail] Malware targeting GnuPG/PGP Keyrings
In-Reply-To: <20080925193558.GA51515@jabberwocky.com>
References: <48DBA9BA.9080303@sixdemonbag.org>
	<20080925193558.GA51515@jabberwocky.com>
Message-ID: <0ML2xA-1KjHve0J5j-0005iM@mrelayeu.kundenserver.de>

Hi,

> I wonder, though, how useful is this in practice?  I think encryption
> is both useful and very important in society (which is why I work on
> GnuPG), but even at my most hopeful, I know that the number of people

I suppose the signing part is the crucial point. OpenPGP is not only
used for encryption but for trustworthy signing. To prepend to be
someone else and put a valid signature on it, is the dangerous thing on
this.

Greets
Alex

-- 
***** http://www.lespocky.de *******************************************
Those who would give up essential Liberty, to purchase
a little temporary Safety, deserve neither Liberty nor Safety.
                                (Benjamin Franklin)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080926/6f63a6b4/attachment.bin>

From Andreas.Fenner at thalesgroup.com  Fri Sep 26 13:52:02 2008
From: Andreas.Fenner at thalesgroup.com (Andreas.Fenner at thalesgroup.com)
Date: Fri, 26 Sep 2008 22:52:02 +0200
Subject: [Enigmail] Andreas Fenner is out of the office.
Message-ID: <OF589014A6.7913B7E6-ONC12574D0.0072A0B2-C12574D0.0072A0B2@thalesgroup.com>

An HTML attachment was scrubbed...
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080926/28ba1c80/attachment.html>

From kloecker at kde.org  Fri Sep 26 12:49:08 2008
From: kloecker at kde.org (Ingo =?iso-8859-1?q?Kl=F6cker?=)
Date: Fri, 26 Sep 2008 21:49:08 +0200
Subject: [Enigmail] Malware targeting GnuPG/PGP Keyrings
In-Reply-To: <48DBECE9.2010408@sixdemonbag.org>
References: <48DBA9BA.9080303@sixdemonbag.org>
	<20080925193558.GA51515@jabberwocky.com>
	<48DBECE9.2010408@sixdemonbag.org>
Message-ID: <200809262149.09092@thufir.ingo-kloecker.de>

On Thursday 25 September 2008, Robert J. Hansen wrote:
> David Shaw wrote:
> > It seems odd for a malware author to spend time going after such a
> > small "target market".  Going after company-wide installs, perhaps?
>
> I would imagine the author thinks people with keyrings are high-value
> targets, who will be putting high-value secrets in encrypted mails. 
> But that's just a guess on my part.

I'd say OpenPGP keys used for signing software (e.g. the source code of 
GnuPG) are much more valuable than keys used for encrypting messages, 
at least, for people who are constantly trying to get other people to 
install their malware. Imagine a trojan GnuPG with a valid signature 
made with Werner Koch's key.


Regards,
Ingo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080926/13ebe01a/attachment.bin>

From dshaw at jabberwocky.com  Fri Sep 26 18:48:53 2008
From: dshaw at jabberwocky.com (David Shaw)
Date: Fri, 26 Sep 2008 21:48:53 -0400
Subject: [Enigmail] Malware targeting GnuPG/PGP Keyrings
In-Reply-To: <200809262149.09092@thufir.ingo-kloecker.de>
References: <48DBA9BA.9080303@sixdemonbag.org>
	<20080925193558.GA51515@jabberwocky.com>
	<48DBECE9.2010408@sixdemonbag.org>
	<200809262149.09092@thufir.ingo-kloecker.de>
Message-ID: <B238E898-B25F-435F-935A-9DB78DD32711@jabberwocky.com>

On Sep 26, 2008, at 3:49 PM, Ingo Kl?cker wrote:

> On Thursday 25 September 2008, Robert J. Hansen wrote:
>> David Shaw wrote:
>>> It seems odd for a malware author to spend time going after such a
>>> small "target market".  Going after company-wide installs, perhaps?
>>
>> I would imagine the author thinks people with keyrings are high-value
>> targets, who will be putting high-value secrets in encrypted mails.
>> But that's just a guess on my part.
>
> I'd say OpenPGP keys used for signing software (e.g. the source code  
> of
> GnuPG) are much more valuable than keys used for encrypting messages,
> at least, for people who are constantly trying to get other people to
> install their malware. Imagine a trojan GnuPG with a valid signature
> made with Werner Koch's key.

That's a good point.  At the moment, the majority of OpenPGP keys used  
for signing software exists in the Unixish world, which as a class are  
reasonably less vulnerable (for both engineering and user base  
reasons) to this sort of malware.  Still, compromises do happen and  
will inevitably happen more.  Just a few weeks ago, the Red Hat folks  
had a breakin where the attacker managed to sign a few RPMs for their  
Enterprise Linux distribution: <http://rhn.redhat.com/errata/RHSA-2008-0855.html 
 >.

David


From wk at gnupg.org  Sat Sep 27 03:55:29 2008
From: wk at gnupg.org (Werner Koch)
Date: Sat, 27 Sep 2008 12:55:29 +0200
Subject: [Enigmail] Malware targeting GnuPG/PGP Keyrings
In-Reply-To: <200809262149.09092@thufir.ingo-kloecker.de> ("Ingo
	=?utf-8?Q?Kl=C3=B6cker=22's?=
	message of "Fri, 26 Sep 2008 21:49:08 +0200")
References: <48DBA9BA.9080303@sixdemonbag.org>
	<20080925193558.GA51515@jabberwocky.com>
	<48DBECE9.2010408@sixdemonbag.org>
	<200809262149.09092@thufir.ingo-kloecker.de>
Message-ID: <87od29uace.fsf@wheatstone.g10code.de>

On Fri, 26 Sep 2008 21:49, kloecker at kde.org said:

> install their malware. Imagine a trojan GnuPG with a valid signature 
> made with Werner Koch's key.

Fortunately I use a smartcard to sign releases.  The card is only
plugged in if needed and in most cases I even use the pinpad to enter
the PIN.  So this is quite well secured against a remote attacker.  Of
course I can't reliable check what I am really signing.


Shalom-Salam,

   Werner

-- 
Linux-Kongress 2008 + Hamburg + October 7-10 + www.linux-kongress.org

   Die Gedanken sind frei.  Auschnahme regelt ein Bundeschgesetz.


From hlein at inode.at  Sat Sep 27 08:41:42 2008
From: hlein at inode.at (Helmut Leininger)
Date: Sat, 27 Sep 2008 17:41:42 +0200
Subject: [Enigmail] Enigmail and Thunderbird 3.0b1pre
Message-ID: <gblk7n$ueh$1@mozdev.mozdev.org>

Hi,

I would like enigmail for Thunderbird 3.0b1pre. The current (nightly) 
version only installs in 2.0a2

Regards

From olav at mozilla-enigmail.org  Sat Sep 27 10:40:53 2008
From: olav at mozilla-enigmail.org (Olav Seyfarth)
Date: Sat, 27 Sep 2008 19:40:53 +0200
Subject: [Enigmail] Enigmail and Thunderbird 3.0b1pre
In-Reply-To: <gblk7n$ueh$1@mozdev.mozdev.org>
References: <gblk7n$ueh$1@mozdev.mozdev.org>
Message-ID: <48DE7025.2020301@mozilla-enigmail.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hi Helmut,

> I would like enigmail for Thunderbird 3.0b1pre. The current (nightly)
> version only installs in 2.0a2

it installs and works fine if you ignore the compatibility setting e.g. using
MR Tech Toolkit (or by modifying the RDF within the XPI (=ZIP) manually).

However, I encounter serious non-Engmail problems using 3.0b1pre nightlies such
as that the button Compose new message does not work etc. There currently are
heavy changes in the TB code. Yet, Enigmail nightly works fine with current TB
nightlies.

Olav
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard
Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html

iEYEAREIAAYFAkjecCMACgkQL/NBt8fdKe2gSgCdETBh8W+1OOaeCqNkK+mpP1p2
5D8AoLWxYmtliUNp/L+/rOq9THyk1LV7
=Qo2I
-----END PGP SIGNATURE-----

From jmoore3rd at bellsouth.net  Sat Sep 27 11:27:30 2008
From: jmoore3rd at bellsouth.net (John W. Moore III)
Date: Sat, 27 Sep 2008 14:27:30 -0400
Subject: [Enigmail] Enigmail and Thunderbird 3.0b1pre
In-Reply-To: <48DE7025.2020301@mozilla-enigmail.org>
References: <gblk7n$ueh$1@mozdev.mozdev.org>
	<48DE7025.2020301@mozilla-enigmail.org>
Message-ID: <48DE7B12.6010506@bellsouth.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Olav Seyfarth wrote:

> However, I encounter serious non-Engmail problems using 3.0b1pre nightlies such
> as that the button Compose new message does not work etc. There currently are
> heavy changes in the TB code. Yet, Enigmail nightly works fine with current TB
> nightlies.

Also, most of Your other Extensions will _not_ work.  Rather than
Mr_Tech I recommend the Nightly_Tester_Tools Extension for work with Tb 3.x.

IMHO, I haven't seen /anything/ in Thunderbird 3 that I find
'attractive' and am in no rush to adopt it.  :-\

JOHN ;)
Timestamp: Saturday 27 Sep 2008, 14:27  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4834: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJI3nsQAAoJEBCGy9eAtCsPbo4H/AwXXzf+S3DgKbXW9Np8dBJV
Yfxrqys9V7n+LOCcf/zwEldlg4P857cCp9Wq532IM7fzrMmRZJRLfYWjuL1BUcXW
qEggq+sVUu0R574U4KdNGXMDAiwxINYquu+fAyuBDihLuVcy2K0n+ZXpluOPJqq7
0hWQ3kBhEYZYatnzuAe+BvtQFHnarj0gEGeekSaCiHnMyal46YQ7eqAp7oJ8Nun2
iCNT+zhfqjHCmSguzfWXoDqhYerd+Ltf+nSbo0/FpJrbmoaxuI17i4L2AyBCKFT2
B3cD/ogrmxGAK1moOty3vffowI54ZL3dOgAOMB7FiMHiEvl99vGu+1ZKdTO8CZA=
=beBu
-----END PGP SIGNATURE-----

From mlisten at hammernoch.net  Sun Sep 28 03:11:27 2008
From: mlisten at hammernoch.net (=?ISO-8859-1?Q?Ludwig_H=FCgelsch=E4fer?=)
Date: Sun, 28 Sep 2008 12:11:27 +0200
Subject: [Enigmail] Enigmail and Thunderbird 3.0b1pre
Message-ID: <48DF584F.5060003@hammernoch.net>

Hi Helmut,

Helmut Leininger wrote on 27.09.2008 17:41 Uhr:
> Hi,
>
> I would like enigmail for Thunderbird 3.0b1pre. The current (nightly)
> version only installs in 2.0a2

You are using the wrong nightly version of Enigmail. For use in TB 3.0x
you have to install

enigmail-trunk-tb-<platform>-trunk.xpi

with <platform> being one of win32, linux or darwin-x86-ppc.

This XPI will install without complaining in TB 3.0b1pre.

HTH

Ludwig

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 542 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20080928/2b79f6cf/attachment.bin>

From hlein at inode.at  Sun Sep 28 06:01:12 2008
From: hlein at inode.at (Helmut Leininger)
Date: Sun, 28 Sep 2008 15:01:12 +0200
Subject: [Enigmail] Enigmail and Thunderbird 3.0b1pre
In-Reply-To: <gblk7n$ueh$1@mozdev.mozdev.org>
References: <gblk7n$ueh$1@mozdev.mozdev.org>
Message-ID: <gbnv6n$1oe3$1@mozdev.mozdev.org>

Am 27.09.2008 17:41, Helmut Leininger schrieb:
> Hi,
> 
> I would like enigmail for Thunderbird 3.0b1pre. The current (nightly)
> version only installs in 2.0a2
> 
> Regards
Hi,

Thanks to all. It now installs ok. I found that I had deactivated it due
to earlier problems. After activation it seems to work.

Sorry for the inconvenience.
Helmut

From darylstyrk at gmail.com  Tue Sep 30 19:39:51 2008
From: darylstyrk at gmail.com (Daryl Styrk)
Date: Tue, 30 Sep 2008 22:39:51 -0400
Subject: [Enigmail] 64 bit suport
In-Reply-To: <gbnv6n$1oe3$1@mozdev.mozdev.org>
References: <gblk7n$ueh$1@mozdev.mozdev.org> <gbnv6n$1oe3$1@mozdev.mozdev.org>
Message-ID: <48E2E2F7.30404@gmail.com>

No 64 bit builds?

From delphij at delphij.net  Tue Sep 30 19:44:07 2008
From: delphij at delphij.net (Xin LI)
Date: Tue, 30 Sep 2008 19:44:07 -0700
Subject: [Enigmail] 64 bit suport
In-Reply-To: <48E2E2F7.30404@gmail.com>
References: <gblk7n$ueh$1@mozdev.mozdev.org> <gbnv6n$1oe3$1@mozdev.mozdev.org>
	<48E2E2F7.30404@gmail.com>
Message-ID: <48E2E3F7.3090408@delphij.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Daryl Styrk wrote:
> No 64 bit builds?

Which OS?  FreeBSD has amd64 packages and I am using right now...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (FreeBSD)

iEYEARECAAYFAkji4/cACgkQi+vbBBjt66BeEgCdFnco/qE/X6JXq1qMAAJtLkpe
AyEAn0ApIs66/g7ho36zgp0p/pgKA9vZ
=j5dI
-----END PGP SIGNATURE-----

From darylstyrk at gmail.com  Tue Sep 30 20:20:19 2008
From: darylstyrk at gmail.com (Daryl Styrk)
Date: Tue, 30 Sep 2008 23:20:19 -0400
Subject: [Enigmail] 64 bit suport
In-Reply-To: <48E2E3F7.3090408@delphij.net>
References: <gblk7n$ueh$1@mozdev.mozdev.org>
	<gbnv6n$1oe3$1@mozdev.mozdev.org>	<48E2E2F7.30404@gmail.com>
	<48E2E3F7.3090408@delphij.net>
Message-ID: <48E2EC73.7080305@gmail.com>

Sorry Ubuntu 8.04

Xin LI wrote:
> Daryl Styrk wrote:
>> No 64 bit builds?
> 
> Which OS?  FreeBSD has amd64 packages and I am using right now...
_______________________________________________
Enigmail mailing list
Enigmail at mozdev.org
https://www.mozdev.org/mailman/listinfo/enigmail

From 2600denver at gmail.com  Tue Sep 30 23:21:39 2008
From: 2600denver at gmail.com (Ringo Kamens)
Date: Wed, 01 Oct 2008 02:21:39 -0400
Subject: [Enigmail] 64 bit suport
In-Reply-To: <48E2EC73.7080305@gmail.com>
References: <gblk7n$ueh$1@mozdev.mozdev.org>	<gbnv6n$1oe3$1@mozdev.mozdev.org>	<48E2E2F7.30404@gmail.com>	<48E2E3F7.3090408@delphij.net>
	<48E2EC73.7080305@gmail.com>
Message-ID: <48E316F3.4030104@gmail.com>

Daryl Styrk wrote:
> Sorry Ubuntu 8.04
> 
> Xin LI wrote:
>> Daryl Styrk wrote:
>>> No 64 bit builds?
>> Which OS?  FreeBSD has amd64 packages and I am using right now...
> _______________________________________________
> Enigmail mailing list
> Enigmail at mozdev.org
> https://www.mozdev.org/mailman/listinfo/enigmail
> _______________________________________________
> Enigmail mailing list
> Enigmail at mozdev.org
> https://www.mozdev.org/mailman/listinfo/enigmail
> 
Just do sudo apt-get install enigmail
ringo