Re: Efail - Possible Measures?

2018-05-19 Thread Lukas Pitschl | GPGTools
> I would consider the following "regular" MIME structures: > > 1. top-level MIME part is multipart/encrypted. > 2. an attached email (Content-Type = message/rfc822) containing a > multipart/encrypted MIME part as direct child. We have been doing this in the past but changed it especially for

Re: Efail or OpenPGP is safer than S/MIME

2018-05-17 Thread Lukas Pitschl | GPGTools
> Am 17.05.2018 um 13:03 schrieb Werner Koch : > > The important print is that MDC_METHOD will be 0 with the forthcoming > AEAD algorithm. Thus you need to check whether 3rd argument is there. > > mdc_method = atoi(arg_1) > aead_algo = have_3_args? atoi(arg_3) : 0 >

Re: Efail or OpenPGP is safer than S/MIME

2018-05-17 Thread Lukas Pitschl | GPGTools
> Am 17.05.2018 um 10:07 schrieb Werner Koch : > > On Thu, 17 May 2018 08:59, patr...@enigmail.net said: > >> Within 12 hours after the release I got 5 bug reports/support requests > > Kudos to Enigmail for acting as our guinea pig. I implemented the same > thing in GPGME this

Re: Breaking MIME concatenation

2018-05-16 Thread Lukas Pitschl | GPGTools
> Am 16.05.2018 um 06:21 schrieb Patrick Brunschwig : > > Content-Type: mutlipart/mixed; boundary="WRAPPER" > Content-Description: Efail protection wrapper > > --WRAPPER > Content-Type: text/html > > > > > > --WRAPPER > (result of PGP/MIME decryption) > —WRAPPER—

Re: Breaking MIME concatenation

2018-05-15 Thread Lukas Pitschl | GPGTools
> Am 15.05.2018 um 17:44 schrieb Patrick Brunschwig : > > I already tried a while ago to trick the Thunderbird HTML rendering > engine with tricks like this... They don't work. The rendering engine > ignores the tag (and also tags like ). > > I think the correct solution

Re: How to use a the same generated keypair on enigmail/thunderbird and iOS Mail

2017-07-25 Thread Lukas Pitschl | GPGTools
Since its release, Canary Mail is probably your best option, since it support OpenPGP out-of-the-box. If you rather prefer to keep using iOS Mail, you’ll have to resort to the much less than user friendly options oPenGP and iPGMail (as others have mentioned). They work, but the user experience

Re: Questions about --throw-keyids

2017-02-13 Thread Lukas Pitschl | GPGTools
> Am 13.02.2017 um 17:34 schrieb Daniel Kahn Gillmor : > > On Mon 2017-02-13 06:41:51 -0500, Bjarni Runar Einarsson wrote: >> Step two: Encrypt using gpg --throw-keyids. >> >> This is easy on the sender's end, but whether this feature can be >> used as a matter of course