Mail/PGP solutions

nunotex

nunotex

Hello all!

For years I've used mutt/procmail/fetchmail/gnupg but I swiched to gmail on browser and now I need to use PGP again.
I've found 2 extencions for using it with gmail via browser:

- Mailvelope
- FlowCrypt

I'm using Flowcrypt at the moment but I don't like it to much and Mailenvelope is not working on FreeBSD/Firefox.

Is there a more viable solution for mail/pgp?
I'm asking this because I use gmail on browser for years and now I feel unconfortable to switch to an application like thunderbird or any of the like.

But it would be nice to ear your opinions so I can think switch to a better solution.

Thanks,

Nuno Teixeira
 
Try Protonmail - they have some PGP integration. But in my opinion intensive email and web client are not good combination. Web+PGP are also with questionable level of security unless you are using PGP locally and attach encrypted file.
 
sko said:
mail/claws-mail with mail/claws-mail-pgp works directly via gpg-agent. No extra shenaningans and smartcard/yubikey works OOTB.
Any solution that requires you to upload/paste your private key in some web browser on a web page is fundamentally flawed and that key has to be treated as compromised...
Click to expand...

It seems that claws and thunderbird are the major programs within this category.
I think I will need to test both as comparisons between the two are not too clear and it's time to stop using webmail.

Thanks
 
Thunderbird nowadays is a) heavily bloated and b) uses its own, home-grown GPG/PGP implementation that's completely isolated from the system (apart from the fact that they stored private keys in cleartext for several versions *cough*).
So if you _only_ ever want to use your GPG keys with Thunderbird you might be fine - if you want to use your key pair(s) for other purposes (as GPG is intended to be used), you just can't. At least not in any practical way.
I absolutely don't understand why they axed the enigmail extension that used battle-tested software (gnupg) and went for such an inflexible and dead-end solution that already had several critical CVEs (because reinventing the wheel etc.). Seems to me like a prime example of the "not invented here"-syndrome...

I've been using my GPG-keys (stored on a yubikey) for several years now on all my systems for email signing/encryption, password manager (sysutils/password-store, ssh logins and the occasional encryption of files. Thanks to gpg-agent that's an absolute no-brainer to set up and it 'just works'™. But there is no way doing that with Thunderbird thanks to their stubbornness.
 
sko said:
Thunderbird nowadays is a) heavily bloated and b) uses its own, home-grown GPG/PGP implementation that's completely isolated from the system (apart from the fact that they stored private keys in cleartext for several versions *cough*).
So if you _only_ ever want to use your GPG keys with Thunderbird you might be fine - if you want to use your key pair(s) for other purposes (as GPG is intended to be used), you just can't. At least not in any practical way.
I absolutely don't understand why they axed the enigmail extension that used battle-tested software (gnupg) and went for such an inflexible and dead-end solution that already had several critical CVEs (because reinventing the wheel etc.). Seems to me like a prime example of the "not invented here"-syndrome...

I've been using my GPG-keys (stored on a yubikey) for several years now on all my systems for email signing/encryption, password manager (sysutils/password-store, ssh logins and the occasional encryption of files. Thanks to gpg-agent that's an absolute no-brainer to set up and it 'just works'™. But there is no way doing that with Thunderbird thanks to their stubbornness.
Click to expand...
I'm thinking going into claws path.
It will not be an easy path since I've got used to webmail (gmail) and it's filters works very fine but it will go fine.

Thanks all for nice help.
 
If you are looking for spam filters, claws-mail can directly plug into spamassassin with mail/claws-mail-spamassassin and there are several other spamfilters available, e.g. mail/claws-mail-bogofilter, mail/claws-mail-bsfilter and mail/claws-mail-clamd for virus-scanning. You can also use mail/claws-mail-perl to set up completely custom filtering or processing of mails.
If gmail supports sieve you can u use mail/claws-mail-managesieve to edit those server-side filters.

As you might have already noticed, claws-mail is very versatile and extensible thanks to plugins. Have a look at https://www.claws-mail.org/plugins.php or just do a pkg search claws-mail for what is (officially) avialable and might fit your needs...
 
sko said:
Thunderbird nowadays is a) heavily bloated and b) uses its own, home-grown GPG/PGP implementation that's completely isolated from the system (apart from the fact that they stored private keys in cleartext for several versions *cough*).
Click to expand...
Yes, but thunderbird works with google xoath2. That is really an advantage.

I do not like graphical mail clients, I use alpine that is being developed by only one person, as far as I know. It is in my opinion the only usable command line mail client remaining for the requirements of todays email exchange, but encryption is not very comfortable.

Perhaps encryption works also good in thunderbird. Unfortunately all mail clients are too complicated for normal users, so that encrypted mail exchange till now is not popular, neither with pgp nor with certificates.
 
sko said:
If gmail supports sieve you can u use mail/claws-mail-managesieve to edit those server-side filters.
Click to expand...
From a quick googling, it doesn't seems that gmail supports it.
ProtonMail seems to supports it.

My first doubts about gmail filters is those that move filtered emails to a specified folder and how will a mail reader react to that.
This makes 2 solutions for filters:
1. keep gmail filters as is and use mail reader normally
2. don't use gmail filters and create those within mail reader
 
You must log in or register to reply here.
Back
Top