On 03/17/2014 12:08 PM, Jean-David Beyer wrote: > On 03/17/2014 06:16 AM, Anne Wilson wrote: > > On 16/03/2014 12:21, Jean-David Beyer wrote: > >> On 03/15/2014 02:28 PM, Egbert van der Wal wrote: > >>> I actually see encryption as less of an issue. When I send an > >>> encrypted message to someone, I need to know for sure that the > >>> recipient knows about PGP encryption and knows how to decode > >>> it. If I send an encrypted message to someone who does not use > >>> PGP, he/she cannot read it, no matter what. > > >> How do you send an encrypted message to someone who does not use > >> PGP? You need his public key to do that. > > > I think that is the point that he was making - his reason for > > thinking that encryption is a lesser issue. > > > Anne > > When his sentence starts out "If I send an encrypted message to > someone who does not use PGP, ..." he is already lacking understanding > since he CANNOT send an encrypted message to someone using enigmail if > he does not have that someone's public key. > > And if that someone does not use enigmail (or something very much like > it), he better not send that message at all (if it really needed to be > encrypted).
I do understand the procedure of PGP encryption. And I explained in my previous mail that it is no problem to send an encrypted mail to someone even if I do not have their public key. It's just extremely unlikely that they'll be able to decrypt it, since I'd be using a different public key. I could just as well enable encryption for this particular message and select the PGP key of my colleage. You will not be able to read it, but it will be encrypted. This is all extremely beside the point I was trying to make. My point is that when I'm sending an encrypted mail, I must be certain that the person I'm sending it to knows what it is and is actually using PGP because otherwise they cannot decrypt the message. Therefore, for the type of person that I would send encrypted mails, it is no issue how and where any key or signature is transfered because I can assume that the recipient has a mailclient that knows what do do with this. However, when I do not encrypt a message, but simply sign it, I cannot make such an assumption. That is the point I was trying to make. Regards, Egbert
signature.asc
Description: OpenPGP digital signature
_______________________________________________ enigmail-users mailing list [email protected] https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
