[HacktionLab] hacktion lab May 2012 workshop

[penguin]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256



On 03/05/12 17:34, Sikes wrote:
> The 'difficulty' does not start with the crypto part, but with the 
> understanding of how email (and digital messaging in general)
> works.
> 
> As trivial as it may look to a techie, the whole protocol chain id
> SMTP and (S)POP3/IMAP(S), required to understand what the role of
> thunderbird is at all is not evidently understood by the average
> user of email. Needless to say that concepts and implementations of
> public key encryption and the tools that come with it do not
> exactly make things easier :S

Not sure this is a problem. I have no idea about protocol chains, but
I can use Thunderbird/Enigmail. Perhaps an analogy is that you don't
have to understand how an internal combustion engine works in order to
drive.

> 
> Most ppl use webmail and will keep using it, so exploring PKI
> encrytion for webmail is crucial , if the goal is the make email
> usage at large more secure.
> 
> In fact the basic-internet-security flossmanual has quite a good
> chapter on it:
> 
> http://en.flossmanuals.net/basic-internet-security/ch033_webmail-security/

What
> 
are people's views about using FireGPG - discontinued sine June
2010, so no bug fixes?

Cheers
- -- 
penguin

GPG key: http://tiny.cc/gpg-key
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBCAAGBQJPoreXAAoJENMF+CPFM1bedzsH/2rv8a8rgZo5FN+ywxyZzTdQ
4b+4q4BWh+OOkHznokjQqQBzW3amG9fp+Ahp0gbRobxlO1MezWx+/vx7auHvo6EF
9BYD4B8bQb9JVwZNvyVZSondyAif6W2kLzvFjaBxMHVPzwM9wlpLRbDIVZaBQiPu
Um66AZRpCXxQlfG3T6zBAipDxFU2YcMvXy51w3rQ7fmPlo9FS5wSS0BImxx55iua
95Om4BSXfdM9XLnhx1IlWS+uMh9aSze6VJgQPMkVwT0UWL06CfqwFFy5kJI1ykcn
8ZVpidbq9n0edo/i8zNMLQPmMbtX9nq8+WINS/aizZqteUOPEJ04oQ9DTnd1ymY=
=TukC
-----END PGP SIGNATURE-----