[chiglug] EFF: Temporally Stop Using PGP for Encrypted E-mail
Adam Tauno Williams
awilliam at whitemice.org
Tue May 15 11:57:21 UTC 2018
> https://www.eff.org/deeplinks/2018/05/not-so-pretty-what-you-need-
> know-about-e-fail-and-pgp-flaw-0
> I kinda disagree with the EFF's tone in this e-mail.
Same here - and I do not agree with the conclusion. The issue is the
loading-of-remote-resources; something which, in any respectable e-
mail client, can be disabled. And is always disable for anything
interested in Security.
There is a problem with loading-remote-resources from a message with or
without PGP/GPG.
> While Signal is a great platform for text messaging and instant
> messaging, it really isn't a replacement for e-mail. PGP encrypted E-
> mail works better with threaded discussions and doesn't suffer from a
> single point of failure like Signal does.
Yep.
> Coming up with a new, decentralized discussion
> platform with the same adoption rate of PGP/e-mail will be extremely
> difficult. I hope that this problem is fixed quickly and doesn't mark
> the end of PGP e-mail encryption.
--
Adam Tauno Williams <mailto:awilliam at whitemice.org> GPG D95ED383
Systems Administrator, Python Developer, LPI / NCLA
More information about the discuss
mailing list