Naturally, GMail decided to quarantine some replies, including this one.
Tom said: > I would participate in a group (linux-390) level 'web of trust'. I have > attached my new PGP key as published to https://keys.openpgp.org Well then ... let's get that started!Since your attachment seems to have made it through LISTSERV, I'm signing this message. (For which the signature will appear as an attachment.) Other lists have attachments disabled, which breaks the TBird OpenPGP support.
I have downloaded your key and will start a collection. I'll also try sending a note encrypted with your public key.
> I tried PGP encrypted emails between me and my sons (linux/unix users) > but they are both using Outlook now for corporate reasons. With the > three of us, it was easy to get the 'web of trust'. For my last > employment, the PKI model was chosen from the very beginning.I've done PGP with the kids. In those days, the wisdom was to always set a key expiration. I will defer detailed discussion about key/cert expirations except to say that the kids didn't renew.
The rationale is that this is about more than just private email. PGP keys serve to establish an secure identity. "It's all about trust."
For your sons, if they're interested, there is GPG4Win which worked with Outlook last time I tried. (It was not a robust plug-in, sometimes had to be disabled and/or required annoying update frequency.) Then again, services like WSL might boost the viability of Linux email apps in their day-to-day.
TBird should be able to go PKI. We should talk about that in a separate thread.
-- R; <>< On 12/5/23 16:14, Thomas Kern wrote:
I tried PGP encrypted emails between me and my sons (linux/unix users) but they are both using Outlook now for corporate reasons. With the three of us, it was easy to get the 'web of trust'. For my last employment, the PKI model was chosen from the very beginning. I would participate in a group (linux-390) level 'web of trust'. I have attached my new PGP key as published to https://keys.openpgp.org /Tom Kern On 12/5/2023 1:19 PM, Rick Troth wrote:That's cryptoGRAPHY, not to be konfoozed with cryptoCURRENCY. Any of you using Thunderbird? And if so, are you using the (now) built-in PGP support? Last week I noticed a LI post by someone from this circle. He had made a donation to Thunderbird (and we thank you!). So I asked this colleague privately if he had delved into the OpenPGP functionality which has been built-into Thunderbird for like three years already. He had not. He and I will circle back on that, but I then wondered about the rest of the group. So I must ask. I've been a user of, and a fan of, and a promoter of, PGP for many years. There are lots of tools now for security and privacy, and a handful of trust webs supporting them. The PGP "web of trust" is the most important because it is peer-to-peer. Not to slam the PKI model, but it has drawbacks when used at the lowest level. I could discuss, but let's do so in a separate thread. And don't forget that if you're running Linux, you ALREADY HAVE PGP in house, even if you don't know the value. The downside to PGP is its upside. Being peer-to-peer it doesn't scale well in large environments (enterprise, gov/mil, consumer). As a result, it has always been kind of a side-show. But then, it's a standard part of Linux. And now with OpenPGP built-into Thunderbird (and other email clients, from way before TB), it's much much easier to start using it, and then shortly to get into the web of trust. So that's the question: are any of you using PGP via Thunderbird? (Or using PGP at all?) I'd like to hear from you. Maybe converse with myself and our unnamed colleague. It's all about trust. -- R; <>< ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www2.marist.edu/htbin/wlvindex?LINUX-390---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions,send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visithttp://www2.marist.edu/htbin/wlvindex?LINUX-390
---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www2.marist.edu/htbin/wlvindex?LINUX-390
OpenPGP_signature
Description: OpenPGP digital signature
