[liberationtech] pgp and e-mail resources?
Frank Corrigan
email at franciscorrigan.com
Fri Oct 29 05:53:04 PDT 2010
I would also add that companies like bluehost.com web packages also
include GPG enabled webmail services, this will allow sending encrypted
email using a recipients Public key and if provider trust
(http://preview.tinyurl.com/26doxs7 & http://preview.tinyurl.com/ryge6t)
is an issue recipients can decrypt email offline using the likes of
Thurderbird's add-on Enigmail.
Many web hosts also provide web mail over ssl, though more expensive
than the google apps.
http://enigmail.mozdev.org/home/index.php.html
Fastmail.fm also offers email over https and provides free and advanced
accounts, including hosting domains to provide group and organisational
email services.
Most linux distributions have gpg embedded, the most popular and easy to
use is Ubuntu, which can be used as a LiveCD on an untrusted computer.
http://www.ubuntu.com/
https://secure.wikimedia.org/wikipedia/en/wiki/Live_cd
Related resources:
http://epic.org/privacy/tools.html
http://security.ngoinabox.org/
https://ssd.eff.org/
Frank
----- Original message -----
From: "Kirby Plessas" <kirby at plessas.net>
To: "Chris Palmer" <chris at eff.org>
Cc: "Liberation Tech List" <liberationtech at lists.stanford.edu>
Date: Fri, 29 Oct 2010 07:03:59 -0400
Subject: Re: [liberationtech] pgp and e-mail resources?
I would like to piggyback off of Chris' answer. If your only concern is
your
partner not using SSL and if Google is not the threat, then a simple
choice
would be to spend $10 on a Google Apps domain and set up an email system
through it so that you can force all users to use SSL. I believe you get
up
to 200 email users for the $10 per year investment.
Kirby Plessas
On Thu, Oct 28, 2010 at 1:44 PM, Chris Palmer <chris at eff.org> wrote:
> On Oct 28, 2010, at 1:49 AM, Graham Webster wrote:
>
> > Let's assume correspondents can't assume their counterparts will be
> connecting to mail servers with SSL.
>
> Why? Asking your friend to please use Gmail and to check the Always Use SSL
> box is an easier ask than just about any other secure email solution.
>
> It doesn't help if your threat actor is Google (less likely) or someone who
> has compromised Google (has happened). In that case you have to try
> something else, like PGP or maybe a private web message board that uses
> HTTPS correctly. The latter requires only one tech expert.
>
>
> --
> Chris Palmer
> Technology Director, Electronic Frontier Foundation
>
> _______________________________________________
> liberationtech mailing list
> liberationtech at lists.stanford.edu
>
> Should you need to change your subscription options, please go to:
>
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
>
> If you would like to receive a daily digest, click "yes" (once you click
> above) next to "would you like to receive list mail batched in a daily
> digest?"
>
> You will need the user name and password you receive from the list
> moderator in monthly reminders.
>
> Should you need immediate assistance, please contact the list moderator.
>
_______________________________________________
liberationtech mailing list
liberationtech at lists.stanford.edu
Should you need to change your subscription options, please go to:
https://mailman.stanford.edu/mailman/listinfo/liberationtech
If you would like to receive a daily digest, click "yes" (once you click
above) next to "would you like to receive list mail batched in a daily
digest?"
You will need the user name and password you receive from the list
moderator in monthly reminders.
Should you need immediate assistance, please contact the list moderator.
More information about the liberationtech
mailing list