[Enigmail] Encrypt newsposts

John Clizbe John at Mozilla-Enigmail.org
Fri May 1 01:34:47 PDT 2009 

mailinglists wrote:
> Hi John,
>> I think you're going to need to do your encryption up-front before
>> clicking Send. PGPDesktop/GPGshell/WinPT all provide both current-window
>> and clipboard capability for doing this.
>>   
> thanks for the suggestion, but that is out of the question. It's too
> easy to forget to hit Ctrl+Alt+Whatever to encrypt the post before
> hitting send. It needs to be fully automated, such as with the enigmail
> rules.

Is 34 years coding and doing system design&admin with 30 of that getting
paid for it OK with your other reply to Rob (the more than 20 years
part)? ;-)

I have absolutely NO issue with what you are trying to achieve, but news
just doesn't feel like the proper solution implementation.

From your other reply:
> Any ideas? Here are the requirements:
> + Find a better alternative for software and project discussions than
> email. News would suit fine.
> + Support access control.
> + Don't leave news posts unencrypted on the server or anywhere else.
> They should be decrypted on the fly, just like enigmail does.
> + Allow easy archiving of old posts.
> + Allow new members to read old posts, which rules out encryping mails
>   to a predefined set of keys, as the keys of potentially new members
>   are not known to the original poster.

What part of the current email setup is so cumbersome/wearisome? I ask
because email really is, IMO, the best solution.

How about a email list, subscriptions are moderated to prevent
unauthorized list access. Say mailman?

delivery can be imap or POP3, but I'd use POP with a local mbox for each
client machine.

The list manager is easily configured  to archive all posts to a mbox
formatted file which may be downloaded to give new members access to all
prior posts.

That to me looks to meet all your requirements. Single delivery address
with automatic encryption to a shared key.

> Now it's not that we are developing some super secret weapon. It's
> just that management, for once, is actually aware of and interested
> in using encryption. I am pretty glad that there are managers that
> care about things like that and I want to support that. Also, as they
> have outsourced their entire IT-Administration (including backups but
>  excluding PGP keys of course), I can understand they do not want
> their contractor to be able to snoop in our discussion.

Kudos to your management for going along with encryption.

-- 
John P. Clizbe                      Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net  or
     mailto:pgp-public-keys at gingerbear.net?subject=HELP

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 678 bytes
Desc: OpenPGP digital signature
URL: <http://www.mozdev.org/pipermail/enigmail/attachments/20090501/d72e29d4/attachment.bin>

More information about the Enigmail mailing list