1 # SOME DESCRIPTIVE TITLE
2 # Copyright (C) YEAR Free Software Foundation, Inc.
3 # This file is distributed under the same license as the PACKAGE package.
4 # FIRST AUTHOR <EMAIL@ADDRESS>, YEAR.
8 "Project-Id-Version: \n"
9 "POT-Creation-Date: 2021-08-14 18:02+0200\n"
10 "PO-Revision-Date: 2021-08-04 20:06+0200\n"
15 "Content-Type: text/plain; charset=UTF-8\n"
16 "Content-Transfer-Encoding: 8bit\n"
17 "X-Generator: Poedit 3.0\n"
18 "Plural-Forms: nplurals=2; plural=(n != 1);\n"
20 #. type: Attribute 'lang' of: <html>
24 #. type: Attribute 'content' of: <html><head><meta>
25 msgid "text/html; charset=utf-8"
26 msgstr "text/html; charset=utf-8"
28 #. type: Content of: <html><head><title>
30 "Email Self-Defense - a guide to fighting surveillance with GnuPG encryption"
32 "Guía de Autodefensa do Correo Electrónico - unha guía para loitar contra a "
33 "vixilancia con cifrado GnuPG"
35 #. type: Attribute 'content' of: <html><head><meta>
37 "GnuPG, GPG, openpgp, surveillance, privacy, email, security, GnuPG2, "
40 "GnuPG, GPG, openpgp, surveillance, privacy, email, security, GnuPG2, "
43 #. type: Attribute 'content' of: <html><head><meta>
45 "Email surveillance violates our fundamental rights and makes free speech "
46 "risky. This guide will teach you email self-defense in 40 minutes with GnuPG."
48 "A vixilancia do correo electrónico viola os nosos dereitos fundamentais e "
49 "fai a liberdade de expresión arriscada. Esta guía ensinarate autodefensa do "
50 "correo electrónico en 40 minutos con GnuPG."
52 #. type: Attribute 'content' of: <html><head><meta>
53 msgid "width=device-width, initial-scale=1"
54 msgstr "width=device-width, initial-scale=1"
56 #. type: Content of: <html><body><header><div><p>
58 "<strong>Please check your email for a confirmation link now. Thanks for "
59 "joining our list!</strong>"
61 "<strong>Por favor comproba o teu correo electrónico por un enlace de "
62 "confirmación. Grazas por unirte á nosa lista!</strong>"
64 #. type: Content of: <html><body><header><div><p>
66 "If you don't receive the confirmation link, send us an email at info@fsf.org "
67 "to be added manually."
69 "Se non recibes o enlace de confirmación, envía un correo a info@fsf.org para "
70 "ser engadido manualmente."
72 #. type: Attribute 'alt' of: <html><body><header><div><p><img>
76 #. type: Content of: <html><body><header><div><p>
77 msgid "Join us on microblogging services for day-to-day updates:"
78 msgstr "Únete a nos en servizos de microblogging para actualizacións diarias:"
80 #. type: Content of: <html><body><section><div><div><div><p><a>
81 msgid "<a href=\"https://status.fsf.org/fsf\">"
82 msgstr "<a href=\"https://status.fsf.org/fsf\">"
84 #. type: Attribute 'alt' of: <html><body><header><div><ul><li><a><img>
88 #. type: Content of: <html><body><section><div><div><div><p><a>
90 " GNU Social</a> | <a href=\"https://hostux.social/@fsf\">"
92 " GNU Social</a> | <a href=\"https://hostux.social/@fsf\">"
94 #. type: Attribute 'alt' of: <html><body><header><div><ul><li><a><img>
98 #. type: Content of: <html><body><section><div><div><div><p>
100 " Mastodon</a> | <a href=\"https://www.twitter.com/fsf"
103 " Mastodon</a> | <a href=\"https://www.twitter.com/fsf"
106 #. type: Content of: <html><body><header><div><p>
108 "<small><a href=\"https://www.fsf.org/twitter\">Read why GNU Social and "
109 "Mastodon are better than Twitter.</a></small>"
111 "<small><a href=\"https://www.fsf.org/twitter\">Le por qué GNU Social e "
112 "Mastodon son mellores que Twitter.</a></small>"
114 #. type: Content of: <html><body><header><div><p>
115 msgid "← Return to <a href=\"index.html\">Email Self-Defense</a>"
117 "← Volver á <a href=\"index.html\">Defensa persoal do correo "
120 #. type: Content of: <html><body><footer><div><div><h4><a>
121 msgid "<a href=\"https://u.fsf.org/ys\">"
122 msgstr "<a href=\"https://u.fsf.org/ys\">"
124 #. type: Attribute 'alt' of: <html><body><footer><div><div><h4><a><img>
125 msgid "Free Software Foundation"
126 msgstr "Free Software Foundation"
128 #. type: Content of: <html><body><footer><div><p>
132 #. type: Content of: <html><body><footer><div><div><p>
134 "Copyright © 2014-2021 <a href=\"https://u.fsf.org/ys\">Free Software "
135 "Foundation</a>, Inc. <a href=\"https://my.fsf.org/donate/privacypolicy.html"
136 "\">Privacy Policy</a>. Please support our work by <a href=\"https://u.fsf."
137 "org/yr\">joining us as an associate member.</a>"
139 "Copyright © 2014-2021 <a href=\"https://u.fsf.org/ys\">Free Software "
140 "Foundation</a>, Inc. <a href=\"https://my.fsf.org/donate/privacypolicy.html"
141 "\">Política de privacidade</a>. Por favor apoia o noso traballo <a href="
142 "\"https://u.fsf.org/yr\">uníndote a nos como membro asociado.</a>"
144 #. type: Content of: <html><body><footer><div><div><p>
146 "The images on this page are under a <a href=\"https://creativecommons.org/"
147 "licenses/by/4.0/\">Creative Commons Attribution 4.0 license (or later "
148 "version)</a>, and the rest of it is under a <a href=\"https://"
149 "creativecommons.org/licenses/by-sa/4.0\">Creative Commons Attribution-"
150 "ShareAlike 4.0 license (or later version)</a>. Download the <a href="
151 "\"https://agpl.fsf.org/emailselfdefense.fsf.org/edward/CURRENT/edward.tar.gz"
152 "\"> source code of Edward reply bot</a> by Andrew Engelbrecht <"
153 "andrew@engelbrecht.io> and Josh Drake <zamnedix@gnu.org>, available "
154 "under the GNU Affero General Public License. <a href=\"https://www.gnu.org/"
155 "licenses/license-list.html#OtherLicenses\">Why these licenses?</a>"
157 "As imaxes desta páxina están baixo a <a href=\"https://creativecommons.org/"
158 "licenses/by/4.0/\">Creative Commons Atribución 4.0 (ou posterior)</a>, e o "
159 "resto está baixo unha licenza <a href=\"https://creativecommons.org/licenses/"
160 "by-sa/4.0\">Creative Commons Atribución-Compartir Igual 4.0 (ou versión "
161 "posterior)</a>. Descargue o <a href=\"https://agpl.fsf.org/emailselfdefense."
162 "fsf.org/edward/CURRENT/edward.tar.gz\"> código fonte do bot de resposta "
163 "Edward</a> por Andrew Engelbrecht <andrew@engelbrecht.io> e Josh Drake "
164 "<zamnedix@gnu.org>, dispoñible baixo unha licenza GNU Affero General "
165 "Public License. <a href=\"https://www.gnu.org/licenses/license-list."
166 "html#OtherLicenses\">Por qué estas licenzas?</a>"
168 #. type: Content of: <html><body><footer><div><div><p>
170 "Fonts used in the guide & infographic: <a href=\"https://www.google.com/"
171 "fonts/specimen/Dosis\">Dosis</a> by Pablo Impallari, <a href=\"https://www."
172 "google.com/fonts/specimen/Signika\">Signika</a> by Anna Giedryś, <a "
173 "href=\"https://www.google.com/fonts/specimen/Archivo+Narrow\">Archivo "
174 "Narrow</a> by Omnibus-Type, <a href=\"https://libreplanet.org/wiki/GPG_guide/"
175 "Graphics_Howto#Pitfalls\">PXL-2000</a> by Florian Cramer."
177 "Fontes empregadas nesta guía: <a href=\"https://www.google.com/fonts/"
178 "specimen/Dosis\">Dosis</a> por Pablo Impallari, <a href=\"https://www.google."
179 "com/fonts/specimen/Signika\">Signika</a> por Anna Giedryś, <a href="
180 "\"https://www.google.com/fonts/specimen/Archivo+Narrow\">Archivo Narrow</a> "
181 "por Omnibus-Type, <a href=\"https://libreplanet.org/wiki/GPG_guide/"
182 "Graphics_Howto#Pitfalls\">PXL-2000</a> por Florian Cramer."
184 #. type: Content of: <html><body><footer><div><div><p>
186 "Download the <a href=\"emailselfdefense_source.zip\">source package</a> for "
187 "this guide, including fonts, image source files and the text of Edward's "
190 "Descarga o paquete co <a href=\"emailselfdefense_source.zip\">código fonte</"
191 "a> para esta guía, incluíndo as fontes, os arquivos fonte das imaxes e o "
192 "texto das mesaxes de Edward."
194 #. type: Content of: <html><body><footer><div><div><p>
196 "This site uses the Weblabels standard for labeling <a href=\"https://www.fsf."
197 "org/campaigns/freejs\">free JavaScript</a>. View the JavaScript <a href="
198 "\"https://weblabels.fsf.org/emailselfdefense.fsf.org/\" rel=\"jslicense"
199 "\">source code and license information</a>."
201 "Este sitio utiliza o estándar Weblabels para o etiquetado <a href=\"https://"
202 "www.fsf.org/campaigns/freejs\">free JavaScript</a>. Ver o <a href=\"https://"
203 "weblabels.fsf.org/emailselfdefense.fsf.org/\" rel=\"jslicense\">código fonte "
204 "e a información da licenza de JavaScript</a>."
206 #. type: Content of: <html><body><footer><div><p><a>
208 "Infographic and guide design by <a rel=\"external\" href=\"https://jplusplus."
209 "org\"><strong>Journalism++</strong>"
211 "O deseño da infografía e a guía son de <a rel=\"external\" href=\"https://"
212 "jplusplus.org\"><strong>Journalism++</strong>"
214 #. type: Attribute 'alt' of: <html><body><footer><div><p><a><img>
216 msgstr "Journalism++"
218 #. type: Content of: <html><body><header><div><h1>
219 msgid "Email Self-Defense"
220 msgstr "Defensa personal do correo electrónico"
222 #. type: Content of: <html><body><header><div><ul><li>
224 "<strong><a href=\"https://libreplanet.org/wiki/GPG_guide/Translation_Guide"
225 "\"> Translate!</a></strong>"
227 "<strong><a href=\"https://libreplanet.org/wiki/GPG_guide/Translation_Guide"
228 "\"> Traduce!</a></strong>"
230 #. type: Content of: <html><body><header><div><ul><li>
231 msgid "<a href=\"index.html\" class=\"current\">Set up guide</a>"
232 msgstr "<a href=\"index.html\" class=\"current\">Guía de configuración</a>"
234 #. type: Content of: <html><body><header><div><ul><li>
235 msgid "<a href=\"workshops.html\">Teach your friends</a>"
236 msgstr "<a href=\"workshops.html\">Ensínao aos teus amigos</a>"
238 #. type: Content of: <html><body><header><div><ul><li><a>
240 "<a href=\"https://fsf.org/share?u=https://u.fsf.org/zb&t=Email"
241 "%20encryption%20for%20everyone%20via%20%40fsf\"> Share "
243 "<a href=\"https://fsf.org/share?u=https://u.fsf.org/zb&t=Cifrado%20de"
244 "%20correo%20electrónico%20para%20todos%20via%20%40fsf\"> Compartir "
246 #. type: Content of: <html><body><header><div><ul><li><a>
250 #. type: Attribute 'alt' of: <html><body><header><div><ul><li><a><img>
254 #. type: Attribute 'alt' of: <html><body><header><div><ul><li><a><img>
255 msgid "[Hacker News]"
256 msgstr "[Hacker News]"
258 #. type: Content of: <html><body><header><div><div><div><p>
260 "We fight for computer users' rights, and promote the development of free (as "
261 "in freedom) software. Resisting bulk surveillance is very important to us."
263 "Loitamos polos dereitos dos usuarios da informática, e promovemos o "
264 "desenvolvemento do software libre. Opoñernos á vixilancia indiscriminada é "
265 "moi importante para nos."
267 #. type: Content of: <html><body><header><div><div><div><p>
269 "<strong>Please donate to support Email Self-Defense. We need to keep "
270 "improving it, and making more materials, for the benefit of people around "
271 "the world taking the first step towards protecting their privacy.</strong>"
273 "<strong>Por favor, dona para apoiar a defensa personal do correo "
274 "electrónico. Necesitamos mellorala e realizar outros materiais similares, "
275 "para o beneficio da xente de todo el mundo a dar os seus primeiros pasos "
276 "para protexer a súa privacidade. </strong>"
278 #. type: Content of: <html><body><section><div><div><div><p><a>
280 "<a href=\"https://crm.fsf.org/civicrm/contribute/transact?reset=1&"
281 "id=14&mtm_campaign=email_self_defense&mtm_kwd=guide_donate\">"
283 "<a href=\"https://crm.fsf.org/civicrm/contribute/transact?reset=1&"
284 "id=14&mtm_campaign=email_self_defense&mtm_kwd=guide_donate\">"
286 #. type: Attribute 'alt' of: <html><body><header><div><div><p><a><img>
290 #. type: Content of: <html><body><header><div><div><p><a>
291 msgid "<a id=\"infographic\" href=\"infographic.html\">"
292 msgstr "<a id=\"infographic\" href=\"infographic.html\">"
294 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><a><img>
295 msgid "View & share our infographic →"
296 msgstr "Ver e compartir a nosa infografía →"
298 #. type: Content of: <html><body><header><div><div><p>
300 "</a> Bulk surveillance violates our fundamental rights and makes free speech "
301 "risky. This guide will teach you a basic surveillance self-defense skill: "
302 "email encryption. Once you've finished, you'll be able to send and receive "
303 "emails that are scrambled to make sure a surveillance agent or thief "
304 "intercepting your email can't read them. All you need is a computer with an "
305 "Internet connection, an email account, and about forty minutes."
307 "</a>A vixilancia indiscriminada viola os nosos dereitos fundamentais e pon "
308 "en peligro a liberdade de expresión. Esta guía ensinarate unha destreza "
309 "básica da defensa persoal contra a vixilancia: o cifrado do correo "
310 "electrónico. Unha vez a remates, serás capaz de enviar e recibir correos "
311 "electrónicos cifrados para evitar que un vixiante ou un ladrón que "
312 "intercepten o teu correo electrónico poda lerlos. Todo o que necesitas é "
313 "unha computadora con conexión a Internet, unha conta de correo electrónico e "
314 "aproximadamente corenta minutos."
316 #. type: Content of: <html><body><header><div><div><p>
318 "Even if you have nothing to hide, using encryption helps protect the privacy "
319 "of people you communicate with, and makes life difficult for bulk "
320 "surveillance systems. If you do have something important to hide, you're in "
321 "good company; these are the same tools that whistleblowers use to protect "
322 "their identities while shining light on human rights abuses, corruption, and "
325 "Incluso se non tes nada que esconder, utilizar cifrado axuda a protexer a "
326 "privacidade da xente coa que te comunicas, e fai a vida difícil aos sistemas "
327 "de vixilancia en masa. Se tes algo importante que esconder, estás en boa "
328 "compañía; estas son as mesmas ferramentes que os informantes usan para "
329 "protexer as súas identidades denunciando abusos contra os dereitos humanos, "
330 "corrupción e outros crimes."
332 #. type: Content of: <html><body><header><div><div><p>
334 "In addition to using encryption, standing up to surveillance requires "
335 "fighting politically for a <a href=\"https://gnu.org/philosophy/surveillance-"
336 "vs-democracy.html\">reduction in the amount of data collected on us</a>, but "
337 "the essential first step is to protect yourself and make surveillance of "
338 "your communication as difficult as possible. This guide helps you do that. "
339 "It is designed for beginners, but if you already know the basics of GnuPG or "
340 "are an experienced free software user, you'll enjoy the advanced tips and "
341 "the <a href=\"workshops.html\">guide to teaching your friends</a>."
343 "Ademáis de utilizar o cifrado, facer fronte á vixilancia require unha loita "
344 "política para <a href=\"https://gnu.org/philosophy/surveillance-vs-democracy."
345 "html\">reducir a cantidade de datos recollidos sobre nos</a>, pero o "
346 "primeiro paso imprescindible é protexerte a tí mesmo e facer que a "
347 "vixilancia das túas comunicacións sea o máis difícil posible. Esta guía "
348 "axudarate a facer iso. Está deseñada para principiantes, pero se xa coñeces "
349 "o básico de GnuPG ou eres un usuario experimentado de software libre, "
350 "desfrutarás dos trucos avanzados e a <a href=\"workshops.html\">guía para "
351 "ensinar aos teus amigos</a>."
353 #. type: Content of: <html><body><section><div><div><h2>
354 msgid "<em>#1</em> Get the pieces"
355 msgstr "<em>#1</em> Consegue as pezas"
357 #. type: Content of: <html><body><section><div><div><p>
359 "This guide relies on software which is <a href=\"https://www.gnu.org/"
360 "philosophy/free-sw.html\">freely licensed</a>; it's completely transparent "
361 "and anyone can copy it or make their own version. This makes it safer from "
362 "surveillance than proprietary software (like Windows or macOS). Learn more "
363 "about free software at <a href=\"https://u.fsf.org/ys\">fsf.org</a>."
365 "Esta guía básase en software que <a href=\"https://www.gnu.org/philosophy/"
366 "free-sw.html\">licenciado libremente</a>; é completamente transparente e "
367 "calquera pode copialo ou facer a súa propia versión. Isto faino máis seguro "
368 "contra a vixilancia que o software privativo (como Windows o macOS). Aprende "
369 "máis sobre software libre en <a href=\"https://u.fsf.org/ys\">fsf.org</a>."
371 #. type: Content of: <html><body><section><div><div><p>
373 "Most GNU/Linux operating systems come with GnuPG installed on them, so if "
374 "you're running one of these systems, you don't have to download it. If "
375 "you're running macOS or Windows, steps to download GnuPG are below. Before "
376 "configuring your encryption setup with this guide, though, you'll need a "
377 "desktop email program installed on your computer. Many GNU/Linux "
378 "distributions have one installed already, such as Icedove, which may be "
379 "under the alternate name \"Thunderbird.\" Programs like these are another "
380 "way to access the same email accounts you can access in a browser (like "
381 "Gmail), but provide extra features."
383 "A maioría dos sisteams operativos GNU/Linux inclúen GnuPG xa instalado, polo "
384 "que si utilizas un destes sistemas, non é necesario que o descargues. Se "
385 "utilizas macOS ou Windows, os pasos para descargar GnuPG están a "
386 "continuación. Antes de configurar os axustes de cifrado con esta guía, non "
387 "obstante, necesitarás ter instalado no teu computador un programa para "
388 "xestionar o correo electrónico. A maioría das distribucións GNU/Linux teñen "
389 "un instalado, como pode ser Icedove, aínda que pode atoparse cun nome "
390 "alternativo como \"Thunderbird\". Programas como este son outra forma de "
391 "acceder ás mesmas contas de correo electrónico as que podes nun navegador "
392 "(como Gmail), pero proporcionan características adicionais."
394 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
395 msgid "Step 1.A: Install Wizard"
396 msgstr "Paso 1.A: Asistente de instalación"
398 #. type: Content of: <html><body><section><div><div><div><h3>
399 msgid "<em>Step 1.a</em> Set up your email program with your email account"
401 "<em>Paso 1.a</em> Configura o teu programa de correo electrónico coa túa "
404 #. type: Content of: <html><body><section><div><div><div><p>
406 "Open your email program and follow the wizard (step-by-step walkthrough) "
407 "that sets it up with your email account. This usually starts from \"Account "
408 "Settings\" → \"Add Mail Account\". You should get the email server "
409 "settings from your systems administrator or the help section of your email "
412 "Abre o teu programa de correo electrónico e segue o asistente (tutorial paso "
413 "a paso) que o configura coa túa conta de correo electrónico. Xeralmente "
414 "comeza dende \"Configuración da conta\" → \"Engadir conta de correo\". "
415 "Deberías obter a configuración para os axustes do servidor do teu "
416 "administrador de sistemas ou a sección de axuda da túa conta de correo "
419 #. type: Content of: <html><body><section><div><div><div><div><h4>
420 msgid "Troubleshooting"
421 msgstr "Solución de problemas"
423 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
424 msgid "The wizard doesn't launch"
425 msgstr "O asistente non inicia"
427 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
429 "You can launch the wizard yourself, but the menu option for doing so is "
430 "named differently in each email program. The button to launch it will be in "
431 "the program's main menu, under \"New\" or something similar, titled "
432 "something like \"Add account\" or \"New/Existing email account.\""
434 "Podes lanzar o asistente ti mesmo, pero o menú de opcións para realizar isto "
435 "pode ter diferentes nomes dependendo do programa de correo que uses. O botón "
436 "para inicialo estará no menú principal do programa, e se chamará \"Novo\" ou "
437 "algo similar, baixo o título \"Engadir conta de correo\" ou \"Nova/existente "
440 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
441 msgid "The wizard can't find my account or isn't downloading my mail"
443 "O asistente non pode encontrar a miña conta ou non está descargando o meu "
446 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
448 "Before searching the Web, we recommend you start by asking other people who "
449 "use your email system, to figure out the correct settings."
451 "Antes de buscar na Web, recomendamos que preguntes a outras persoas que usen "
452 "o mesmo sistema de correo electrónico, para averiguar as configuracións "
455 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
456 msgid "I can't find the menu"
457 msgstr "Non podo encontrar o menú"
459 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
461 "In many new email programs, the main menu is represented by an image of "
462 "three stacked horizontal bars."
464 "En moitos programas novos de correo electrónico, o menú principal está "
465 "representado por unha imaxe de tres barras horizontais apiladas."
467 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
468 msgid "Don't see a solution to your problem?"
469 msgstr "Non ves unha solución ó teu problema?"
471 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
473 "Please let us know on the <a href=\"https://libreplanet.org/wiki/GPG_guide/"
474 "Public_Review\">feedback page</a>."
476 "Por favor fáinoslo saber na <a href=\"https://libreplanet.org/wiki/GPG_guide/"
477 "Public_Review\">páxina de comentarios</a>."
479 #. type: Content of: <html><body><section><div><div><div><h3>
480 # | <em>Step 1.b</em> [-Get your terminal ready and install-] {+Install+} GnuPG
482 #| msgid "<em>Step 1.b</em> Get your terminal ready and install GnuPG"
483 msgid "<em>Step 1.b</em> Install GnuPG"
484 msgstr "<em>Paso 1.b</em> Prepara a túa terminal e instala GnuPG"
486 #. type: Content of: <html><body><section><div><div><div><p>
487 # | If you are using a GNU/Linux machine, you should already have GnuPG
488 # | installed, and you can skip to <a [-href=\"#section2\">Step-]
489 # | {+href=\"#section2\">Section+} 2</a>.
492 #| "If you are using a GNU/Linux machine, you should already have GnuPG "
493 #| "installed, and you can skip to <a href=\"#section2\">Step 2</a>."
495 "If you are using a GNU/Linux machine, you should already have GnuPG "
496 "installed, and you can skip to <a href=\"#section2\">Section 2</a>."
498 "Se estás utilizando un equipo con GNU/Linux, deberías ter xa instalado "
499 "GnuPG, e podes pasar ó <a href=\"#section2\">Paso 2</a>."
501 #. type: Content of: <html><body><section><div><div><div><p>
502 # | If you are using a macOS or Windows machine, however, you need to first
503 # | install the GnuPG program. Select your operating system below and follow
504 # | the [-steps.-] {+instructions.+} For the rest of [-the steps in-] this
505 # | guide, the steps are the same for all operating systems.
508 #| "If you are using a macOS or Windows machine, however, you need to first "
509 #| "install the GnuPG program. Select your operating system below and follow "
510 #| "the steps. For the rest of the steps in this guide, the steps are the "
511 #| "same for all operating systems."
513 "If you are using a macOS or Windows machine, however, you need to first "
514 "install the GnuPG program. Select your operating system below and follow the "
515 "instructions. For the rest of this guide, the steps are the same for all "
518 "Non obstante, se estás utilizando un equipo con macOS ou Windows, debes "
519 "instalar GnuPG primeiro. Selecciona a continuación o teu sistema operativo e "
520 "segue os pasos. Para o resto de pasos desta guía, os pasos son os mesmos "
521 "para todos os sistemas operativos."
523 #. type: Content of: <html><body><section><div><div><div><div><h4>
527 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
528 msgid "Use a third-party package manager to install GnuPG"
529 msgstr "Usar un xestor de paquetes de terceiros para instalar GnuPG"
531 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
533 "The default macOS package manager makes it difficult to install GnuPG and "
534 "other pieces of free software (like Emacs, GIMP, or Inkscape). To make "
535 "things easier, we recommend setting up the third-party package manager "
536 "\"Homebrew\" to install GnuPG. For this, we will use a program called "
537 "\"Terminal,\" which is pre-installed on macOS."
540 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
541 # | [-To make things easier, we recommend setting up the third-party package
542 # | manager \"Homebrew\" to install GnuPG.-]{+#+} Copy the [-link-] {+first
543 # | command+} on the home page of <a href=\"https://brew.sh/\">Homebrew</a>
544 # | {+by clicking on the clipboard icon,+} and paste it in Terminal. Click
545 # | \"Enter\" and wait for [-it-] {+the installation+} to finalize.
548 #| "To make things easier, we recommend setting up the third-party package "
549 #| "manager \"Homebrew\" to install GnuPG. Copy the link on the home page of "
550 #| "<a href=\"https://brew.sh/\">Homebrew</a> and paste it in Terminal. Click "
551 #| "\"Enter\" and wait for it to finalize."
553 "# Copy the first command on the home page of <a href=\"https://brew.sh/"
554 "\">Homebrew</a> by clicking on the clipboard icon, and paste it in Terminal. "
555 "Click \"Enter\" and wait for the installation to finalize."
557 "Para facer as cousas máis fáciles, recomendamos configurar o xestor de "
558 "paquetes de terceiros \"Homebrew\" para instalar GnuPG. Copia o enlace da "
559 "páxina principal de <a href=\"https://brew.sh/\">Homebrew</a> e pégaa na "
560 "Terminal. Pulsa \"Enter\" e espera ata que finalice."
562 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
563 # | [-When it is done,-]{+# Then+} install [-the program-] {+GnuPG+} by
564 # | entering the following code in Terminal:
567 #| "When it is done, install the program by entering the following code in "
569 msgid "# Then install GnuPG by entering the following code in Terminal:"
571 "Cando esté feito, instala o programa introducindo o seguinte código na "
574 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
575 msgid "<code>brew install gnupg gnupg2</code>"
578 #. type: Content of: <html><body><section><div><div><div><div><h4>
582 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
583 msgid "Get GnuPG by downloading GPG4Win"
584 msgstr "Consigue GnuPG descargando GPG4Win"
586 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
588 "<a href=\"https://www.gpg4win.org/\">GPG4Win</a> is an email and file "
589 "encryption software package that includes GnuPG. Download and install the "
590 "latest version, choosing default options whenever asked. After it's "
591 "installed, you can close any windows that it creates."
593 "<a href=\"https://www.gpg4win.org/\">GPG4Win</a> é un programa de cifrado de "
594 "correo e arquivos que inclúe GnuPG. Descarga e instala a última versión, "
595 "elixindo as opcións predeterminadas cando pregunte. Unha vez instalado, "
596 "podes cerrar as ventás que creara."
598 #. type: Content of: <html><body><section><div><div><div><h3>
599 msgid "GnuPG, OpenPGP, what?"
600 msgstr "GnuPG, OpenPGP, qué?"
602 #. type: Content of: <html><body><section><div><div><div><p>
604 "In general, the terms GnuPG, GPG, GNU Privacy Guard, OpenPGP and PGP are "
605 "used interchangeably. Technically, OpenPGP (Pretty Good Privacy) is the "
606 "encryption standard, and GNU Privacy Guard (often shortened to GPG or "
607 "GnuPG) is the program that implements the standard. Most email programs "
608 "provide an interface for GnuPG. There is also a newer version of GnuPG, "
611 "En xeral, os termos GnuPG, GPG, GNU Privacy Guard, OpenPGP e PGP son "
612 "intercambiables. Técnicamente, OpenPGP (Pretty Good Privacy) é o estándar de "
613 "cifrado e GNU Privacy Guard (as veces reducido ás siglas GPG ou GnuPG) é o "
614 "programa que implementa o estándar. A maioría dos programas de correo "
615 "electrónico ofrecen unha interfaz para usar GnuPG. Tamén hai unha versión "
616 "máis recente de GnuPG chamada GnuPG2."
618 #. type: Content of: <html><body><section><div><div><h2>
619 msgid "<em>#2</em> Make your keys"
622 #. type: Attribute 'alt' of: <html><body><section><div><div><p><img>
624 "A robot with a head shaped like a key holding a private and a public key"
627 #. type: Content of: <html><body><section><div><div><p>
629 "To use the GnuPG system, you'll need a public key and a private key (known "
630 "together as a keypair). Each is a long string of randomly generated numbers "
631 "and letters that are unique to you. Your public and private keys are linked "
632 "together by a special mathematical function."
635 #. type: Content of: <html><body><section><div><div><p>
637 "Your public key isn't like a physical key, because it's stored in the open "
638 "in an online directory called a keyserver. People download it and use it, "
639 "along with GnuPG, to encrypt emails they send to you. You can think of the "
640 "keyserver as a phonebook; people who want to send you encrypted email can "
641 "look up your public key."
644 #. type: Content of: <html><body><section><div><div><p>
646 "Your private key is more like a physical key, because you keep it to "
647 "yourself (on your computer). You use GnuPG and your private key together to "
648 "descramble encrypted emails other people send to you. <strong>You should "
649 "never share your private key with anyone, under any circumstances.</strong>"
652 #. type: Content of: <html><body><section><div><div><p>
654 "In addition to encryption and decryption, you can also use these keys to "
655 "sign messages and check the authenticity of other people's signatures. We'll "
656 "discuss this more in the next section."
659 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
660 msgid "Step 2.A: Make your Keypair"
663 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
664 msgid "Step 2.A: Set your passphrase"
667 #. type: Content of: <html><body><section><div><div><div><h3>
668 msgid "<em>Step 2.a</em> Make a keypair"
671 #. type: Content of: <html><body><section><div><div><div><h4>
672 msgid "Make your keypair"
675 #. type: Content of: <html><body><section><div><div><div><p>
677 "We will use the command line in a terminal to create a keypair using the "
681 #. type: Content of: <html><body><section><div><div><div><p>
683 "Whether on GNU/Linux, macOS or Windows, you can launch your terminal "
684 "(\"Terminal\" in macOS, \"PowerShell\" in Windows) from the Applications "
685 "menu (some GNU/Linux systems respond to the <kbd>Ctrl + Alt + T</kbd> "
689 #. type: Content of: <html><body><section><div><div><div><p>
690 msgid "# Enter <code>gpg --full-generate-key</code> to start the process."
693 #. type: Content of: <html><body><section><div><div><div><p>
695 "# To answer what kind of key you would like to create, select the default "
696 "option: <samp>1 RSA and RSA</samp>."
699 #. type: Content of: <html><body><section><div><div><div><p>
700 msgid "# Enter the following keysize: <code>4096</code> for a strong key."
703 #. type: Content of: <html><body><section><div><div><div><p>
704 msgid "# Choose the expiration date; we suggest <code>2y</code> (2 years)."
707 #. type: Content of: <html><body><section><div><div><div><p>
708 msgid "Follow the prompts to continue setting up with your personal details."
711 #. type: Content of: <html><body><section><div><div><div><h4>
712 msgid "Set your passphrase"
715 #. type: Content of: <html><body><section><div><div><div><p>
717 "On the screen titled \"Passphrase,\" pick a strong password! You can do it "
718 "manually, or you can use the Diceware method. Doing it manually is faster "
719 "but not as secure. Using Diceware takes longer and requires dice, but "
720 "creates a password that is much harder for attackers to figure out. To use "
721 "it, read the section \"Make a secure passphrase with Diceware\" in <a href="
722 "\"https://theintercept.com/2015/03/26/passphrases-can-memorize-attackers-"
723 "cant-guess/\"> this article</a> by Micah Lee."
726 #. type: Content of: <html><body><section><div><div><div><p>
728 "If you'd like to pick a passphrase manually, come up with something you can "
729 "remember which is at least twelve characters long, and includes at least one "
730 "lower case and upper case letter and at least one number or punctuation "
731 "symbol. Never pick a password you've used elsewhere. Don't use any "
732 "recognizable patterns, such as birthdays, telephone numbers, pets' names, "
733 "song lyrics, quotes from books, and so on."
736 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
737 msgid "GnuPG is not installed"
740 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
742 "You can check if this is the case with the command <code>gpg --version</"
743 "code>. If GnuPG is not installed, it will bring up the following "
744 "result on most GNU/Linux operating systems, or something like it: "
745 "<samp>Command 'gpg' not found, but can be installed with: sudo apt install "
746 "gnupg</samp>. Follow that command and install the program."
749 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
750 msgid "I took too long to create my passphrase"
753 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
755 "That's okay. It's important to think about your passphrase. When you're "
756 "ready, just follow the steps from the beginning again to create your key."
759 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
760 msgid "How can I see my key?"
763 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
765 "Use the following command to see all keys: <code>gpg --list-keys</"
766 "code>. Yours should be listed in there, and later, so will Edward's "
767 "(<a href=\"#section3\">Section 3</a>)."
770 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
772 "If you want to see only your key, you can use <code>gpg --list-key "
773 "[your@email]</code>."
776 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
778 "You can also use <code>gpg --list-secret-key</code> to see your own private "
782 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
783 msgid "More resources"
786 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
788 "For more information about this process, you can also refer to <a href="
789 "\"https://www.gnupg.org/gph/en/manual/c14.html#AEN25\">The GNU Privacy "
790 "Handbook</a>. Make sure you stick with \"RSA and RSA\" (the default), "
791 "because it's newer and more secure than the algorithms the documentation "
792 "recommends. Also make sure your key is at least 4096 bits if you want "
796 #. type: Content of: <html><body><section><div><div><div><div><h4>
800 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
801 msgid "Advanced key pairs"
804 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
806 "When GnuPG creates a new keypair, it compartmentalizes the encryption "
807 "function from the signing function through <a href=\"https://wiki.debian.org/"
808 "Subkeys\">subkeys</a>. If you use subkeys carefully, you can keep your GnuPG "
809 "identity more secure and recover from a compromised key much more quickly. "
810 "<a href=\"https://alexcabal.com/creating-the-perfect-gpg-keypair/\">Alex "
811 "Cabal</a> and <a href=\"https://keyring.debian.org/creating-key.html\">the "
812 "Debian wiki</a> provide good guides for setting up a secure subkey "
816 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
817 msgid "Step 2.B: Send to server and generate a certificate"
820 #. type: Content of: <html><body><section><div><div><div><h3>
821 msgid "<em>Step 2.b</em> Some important steps following creation"
824 #. type: Content of: <html><body><section><div><div><div><h4>
825 msgid "Upload your key to a keyserver"
828 #. type: Content of: <html><body><section><div><div><div><p>
830 "We will upload your key to a keyserver, so if someone wants to send you an "
831 "encrypted message, they can download your public key from the Internet. "
832 "There are multiple keyservers that you can select from the menu when you "
833 "upload, but they are all copies of each other, so it doesn't matter which "
834 "one you use. However, it sometimes takes a few hours for them to match each "
835 "other when a new key is uploaded."
838 #. type: Content of: <html><body><section><div><div><div><p>
840 "# Copy your keyID: <code>gpg --list-key [your@email]</code> will list your "
841 "public (\"pub\") key information, including your keyID, which is a unique "
842 "list of numbers and letters. Copy this keyID, so you can use it in the "
846 #. type: Content of: <html><body><section><div><div><div><p>
847 msgid "# Upload your key to a server: <code>gpg --send-key [keyID]</code>"
850 #. type: Content of: <html><body><section><div><div><div><h4>
851 msgid "Export your key to a file"
854 #. type: Content of: <html><body><section><div><div><div><p>
856 "Use the following command to export your secret key so you can import it "
857 "into your email client at the next <a href=\"#section3\">step</a>. To avoid "
858 "getting your key compromised, store this in a safe place, and make sure that "
859 "if it is transferred, it is done so in a trusted way. Exporting your keys "
860 "can be done with the following commands:"
863 #. type: Content of: <html><body><section><div><div><div><p><code>
864 msgid "<code> $ gpg --export-secret-keys -a [keyID] > my_secret_key.asc"
867 #. type: Content of: <html><body><section><div><div><div><p>
868 msgid "$ gpg --export -a [keyID] > my_public_key.asc </code>"
871 #. type: Content of: <html><body><section><div><div><div><h4>
872 msgid "Generate a revocation certificate"
875 #. type: Content of: <html><body><section><div><div><div><p>
877 "Just in case you lose your key, or it gets compromised, you want to generate "
878 "a certificate and choose to save it in a safe place on your computer for now "
879 "(please refer to <a href=\"#step-6c\">Step 6.C</a> for how to best store "
880 "your revocation cerficate safely). This step is essential for your email "
881 "self-defense, as you'll learn more about in <a href=\"#section5\">Section 5</"
885 #. type: Content of: <html><body><section><div><div><div><p>
887 "# Generate a revocation certificate: <code>gpg --gen-revoke --output revoke."
891 #. type: Content of: <html><body><section><div><div><div><p>
893 "# It will prompt you to give a reason for revocation, we recommend to use "
894 "<samp>1 = key has been compromised</samp>."
897 #. type: Content of: <html><body><section><div><div><div><p>
899 "# You don't have to fill in a reason, but you can; then press \"Enter\" for "
900 "an empty line, and confirm your selection."
903 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
904 msgid "My key doesn't seem to be working or I get a \"permission denied.\""
907 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
909 "Like every other file or folder, gpg keys are subject to permissions. If "
910 "these are not set correctly, your system may not be accepting your keys. You "
911 "can follow the next steps to check, and update to the right permissions."
914 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
915 msgid "# Check your permissions: <code>ls -l ~/.gnupg/*</code>"
918 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
920 "# Set permissions to read, write, execute for only yourself, no others. "
921 "These are the recommended permissions for your folder."
924 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
925 msgid "You can use the code: <code>chmod 700 ~/.gnupg</code>"
928 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
930 "# Set permissions to read and write for yourself only, no others. These are "
931 "the recommended permissions for the keys inside your folder."
934 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
935 msgid "You can use the code: <code>chmod 600 ~/.gnupg/*</code>"
938 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
940 "If you have (for any reason) created your own folders inside ~/.gnupg, you "
941 "must also additionally apply execute permissions to that folder. Folders "
942 "require execution privileges to be opened. For more information on "
943 "permissions, you can check out <a href=\"https://helpdeskgeek.com/linux-tips/"
944 "understanding-linux-permissions-chmod-usage/\">this detailed information "
948 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
949 msgid "More about keyservers"
952 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
954 "You can find some more keyserver information<a href=\"https://www.gnupg.org/"
955 "gph/en/manual/x457.html\"> in this manual</a>. <a href=\"https://sks-"
956 "keyservers.net/overview-of-pools.php\">The sks Web site</a> maintains a list "
957 "of highly interconnected keyservers. You can also <a href=\"https://www."
958 "gnupg.org/gph/en/manual/x56.html#AEN64\">directly export your key</a> as a "
959 "file on your computer."
962 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
963 msgid "Transferring your keys"
966 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
968 "Use the following commands to transfer your keys. To avoid getting your key "
969 "compromised, store it in a safe place, and make sure that if it is "
970 "transferred, it is done so in a trusted way. Importing and exporting a key "
971 "can be done with the following commands:"
974 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p><code>
975 msgid "<code> $ gpg --export-secret-keys -a [keyID] > my_private_key.asc"
978 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p><code>
979 msgid "$ gpg --export -a [keyID] > my_public_key.asc"
982 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p><code>
983 msgid "$ gpg --import my_private_key.asc"
986 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
987 msgid "$ gpg --import my_public_key.asc </code>"
990 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
992 "Ensure that the keyID printed is the correct one, and if so, then go ahead "
993 "and add ultimate trust for it:"
996 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
997 msgid "<code> $ gpg --edit-key [your@email] </code>"
1000 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
1002 "Because this is your key, you should choose <code>ultimate</code>. "
1003 "You shouldn't trust anyone else's key ultimately."
1006 #. type: Content of: <html><body><section><div><div><div><div><dl><dd><p>
1008 "Refer to <a href=\"#step-2b\">Troubleshooting in Step 2.B</a> for more "
1009 "information on permissions. When transferring keys, your permissions may get "
1010 "mixed, and errors may be prompted. These are easily avoided when your "
1011 "folders and files have the right permissions"
1014 #. type: Content of: <html><body><section><div><div><h2>
1015 msgid "<em>#3</em> Set up email encryption"
1018 #. type: Content of: <html><body><section><div><div><p>
1020 "The Icedove (or Thunderbird) email program has PGP functionality integrated, "
1021 "which makes it pretty easy to work with. We'll take you through the steps of "
1022 "integrating and using your key in these email clients."
1025 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1026 msgid "Step 3.A: Email Menu"
1029 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1030 msgid "Step 3.A: Import From File"
1033 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1034 msgid "Step 3.A: Success"
1037 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1038 msgid "Step 3.A: Troubleshoot"
1041 #. type: Content of: <html><body><section><div><div><div><h3>
1042 msgid "<em>Step 3.a</em> Set up your email with encryption"
1045 #. type: Content of: <html><body><section><div><div><div><p>
1047 "Once you have set up your email with encryption, you can start contributing "
1048 "to encrypted traffic on the Internet. First we'll get your email client to "
1049 "import your secret key, and we will also learn how to get other people's "
1050 "public keys from servers so you can send and receive encrypted email."
1053 #. type: Content of: <html><body><section><div><div><div><p>
1055 "# Open your email client and use \"Tools\" → <i>OpenPGP Key Manager</i>"
1058 #. type: Content of: <html><body><section><div><div><div><p>
1059 msgid "# Under \"File\" → <i>Import Secret Key(s) From File</i>"
1062 #. type: Content of: <html><body><section><div><div><div><p>
1064 "# Select the file you saved under the name [my_secret_key.asc] in <a href="
1065 "\"#step-2b\">Step 2.B</a> when you exported your key"
1068 #. type: Content of: <html><body><section><div><div><div><p>
1069 msgid "# Unlock with your passphrase"
1072 #. type: Content of: <html><body><section><div><div><div><p>
1074 "# You will receive a \"OpenPGP keys successfully imported\" window to "
1078 #. type: Content of: <html><body><section><div><div><div><p>
1080 "# Go to \"Account settings\" → \"End-To-End Encryption,\" and make sure "
1081 "your key is imported and select <i>Treat this key as a Personal Key</i>."
1084 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
1085 msgid "I'm not sure the import worked correctly"
1088 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
1090 "Look for \"Account settings\" → \"End-To-End Encryption.\" Here you can "
1091 "see if your personal key associated with this email is found. If it is not, "
1092 "you can try again via the <i>Add key</i> option. Make sure you have the "
1093 "correct, active, secret key file."
1096 #. type: Content of: <html><body><section><div><div><h2>
1097 msgid "<em>#4</em> Try it out!"
1100 #. type: Attribute 'alt' of: <html><body><section><div><div><p><img>
1101 msgid "Illustration of a person in a house with a cat connected to a server"
1104 #. type: Content of: <html><body><section><div><div><p>
1106 "Now you'll try a test correspondence with an FSF computer program named "
1107 "Edward, who knows how to use encryption. Except where noted, these are the "
1108 "same steps you'd follow when corresponding with a real, live person."
1111 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1112 msgid "Step 4.A Send key to Edward."
1115 #. type: Content of: <html><body><section><div><div><div><h3>
1116 msgid "<em>Step 4.a</em> Send Edward your public key"
1119 #. type: Content of: <html><body><section><div><div><div><p>
1121 "This is a special step that you won't have to do when corresponding with "
1122 "real people. In your email program's menu, go to \"Tools\" → \"OpenPGP "
1123 "Key Manager.\" You should see your key in the list that pops up. Right click "
1124 "on your key and select <i>Send Public Keys by Email</i>. This will create a "
1125 "new draft message, as if you had just hit the \"Write\" button, but in the "
1126 "attachment you will find your public keyfile."
1129 #. type: Content of: <html><body><section><div><div><div><p>
1131 "Address the message to <a href=\"mailto:edward-en@fsf.org\">edward-en@fsf."
1132 "org</a>. Put at least one word (whatever you want) in the subject and body "
1133 "of the email. Don't send yet."
1136 #. type: Content of: <html><body><section><div><div><div><p>
1138 "We want Edward to be able to open the email with your keyfile, so we want "
1139 "this first special message to be unencrypted. Make sure encryption is turned "
1140 "off by using the dropdown menu \"Security\" and select <i>Do Not Encrypt</"
1141 "i>. Once encryption is off, hit Send."
1144 #. type: Content of: <html><body><section><div><div><div><p>
1146 "It may take two or three minutes for Edward to respond. In the meantime, you "
1147 "might want to skip ahead and check out the <a href=\"#section6\">Use it "
1148 "Well</a> section of this guide. Once you have received a response, head to "
1149 "the next step. From here on, you'll be doing just the same thing as when "
1150 "corresponding with a real person."
1153 #. type: Content of: <html><body><section><div><div><div><p>
1155 "When you open Edward's reply, GnuPG may prompt you for your passphrase "
1156 "before using your private key to decrypt it."
1159 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1160 msgid "Step 4.B Option 1. Verify key"
1163 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1164 msgid "Step 4.B Option 2. Import key"
1167 #. type: Content of: <html><body><section><div><div><div><h3>
1168 msgid "<em>Step 4.b</em> Send a test encrypted email"
1171 #. type: Content of: <html><body><section><div><div><div><h4>
1172 msgid "Get Edward's key"
1175 #. type: Content of: <html><body><section><div><div><div><p>
1177 "To encrypt an email to Edward, you need its public key, so now you'll have "
1178 "to download it from a keyserver. You can do this in two different ways:"
1181 #. type: Content of: <html><body><section><div><div><div><p>
1183 "<strong>Option 1.</strong> In the email answer you received from Edward as a "
1184 "response to your first email, Edward's public key was included. On the right "
1185 "of the email, just above the writing area, you will find an \"OpenPGP\" "
1186 "button that has a lock and a little wheel next to it. Click that, and select "
1187 "<i>Discover</i> next to the text: \"This message was signed with a key that "
1188 "you don't yet have.\" A popup with Edward's key details will follow."
1191 #. type: Content of: <html><body><section><div><div><div><p>
1193 "<strong>Option 2.</strong> Open your OpenPGP Key manager, and under "
1194 "\"Keyserver\" choose <i>Discover Keys Online</i>. Here, fill in Edward's "
1195 "email address, and import Edward's key."
1198 #. type: Content of: <html><body><section><div><div><div><p>
1200 "The option <i>Accepted (unverified)</i> will add this key to your key "
1201 "manager, and now it can be used to send encrypted emails and to verify "
1202 "digital signatures from Edward."
1205 #. type: Content of: <html><body><section><div><div><div><p>
1207 "In the popup window confirming if you want to import Edward's key, you'll "
1208 "see many different emails that are all associated with its key. This is "
1209 "correct; you can safely import the key."
1212 #. type: Content of: <html><body><section><div><div><div><p>
1214 "Since you encrypted this email with Edward's public key, Edward's private "
1215 "key is required to decrypt it. Edward is the only one with its private key, "
1216 "so no one except Edward can decrypt it."
1219 #. type: Content of: <html><body><section><div><div><div><h4>
1220 msgid "Send Edward an encrypted email"
1223 #. type: Content of: <html><body><section><div><div><div><p>
1225 "Write a new email in your email program, addressed to <a href=\"mailto:"
1226 "edward-en@fsf.org\">edward-en@fsf.org</a>. Make the subject \"Encryption test"
1227 "\" or something similar and write something in the body."
1230 #. type: Content of: <html><body><section><div><div><div><p>
1232 "This time, make sure encryption is turned on by using the dropdown menu "
1233 "\"Security\" and select <i>Require Encryption</i>. Once encryption is on, "
1237 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
1238 msgid "\"Recipients not valid, not trusted or not found\""
1241 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
1243 "You could get the above error message, or something along these lines: "
1244 "\"Unable to send this message with end-to-end encryption, because there are "
1245 "problems with the keys of the following recipients: ...\" In these cases, "
1246 "you may be trying to send an encrypted email to someone when you do not have "
1247 "their public key yet. Make sure you follow the steps above to import the key "
1248 "to your key manager. Open OpenPGP Key Manager to make sure the recipient is "
1252 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
1253 msgid "Unable to send message"
1256 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
1258 "You could get the following message when trying to send your encrypted "
1259 "email: \"Unable to send this message with end-to-end encryption, because "
1260 "there are problems with the keys of the following recipients: edward-en@fsf."
1261 "org.\" This usually means you imported the key with the \"unaccepted "
1262 "(unverified) option.\" Go to the \"key properties\" of this key by right "
1263 "clicking on the key in the OpenPGP Key Manager, and select the option "
1264 "<i>Yes, but I have not verified that this is the correct key</i> in the "
1265 "\"Acceptance\" option at the bottom of this window. Resend the email."
1268 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
1269 msgid "I can't find Edward's key"
1272 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
1274 "Close the pop-ups that have appeared since you clicked Send. Make sure you "
1275 "are connected to the Internet and try again. If that doesn't work, repeat "
1276 "the process, choosing a different keyserver when it asks you to pick one."
1279 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
1280 msgid "Unscrambled messages in the Sent folder"
1283 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
1285 "Even though you can't decrypt messages encrypted to someone else's key, your "
1286 "email program will automatically save a copy encrypted to your public key, "
1287 "which you'll be able to view from the Sent folder like a normal email. This "
1288 "is normal, and it doesn't mean that your email was not sent encrypted."
1291 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
1292 msgid "Encrypt messages from the command line"
1295 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
1297 "You can also encrypt and decrypt messages and files from the <a href="
1298 "\"https://www.gnupg.org/gph/en/manual/x110.html\">command line</a>, if "
1299 "that's your preference. The option --armor makes the encrypted output appear "
1300 "in the regular character set."
1303 #. type: Content of: <html><body><section><div><div><div><h3>
1304 msgid "<em>Important:</em> Security tips"
1307 #. type: Content of: <html><body><section><div><div><div><p>
1309 "Even if you encrypt your email, the subject line is not encrypted, so don't "
1310 "put private information there. The sending and receiving addresses aren't "
1311 "encrypted either, so a surveillance system can still figure out who you're "
1312 "communicating with. Also, surveillance agents will know that you're using "
1313 "GnuPG, even if they can't figure out what you're saying. When you send "
1314 "attachments, you can choose to encrypt them or not, independent of the "
1318 #. type: Content of: <html><body><section><div><div><div><p>
1320 "For greater security against potential attacks, you can turn off HTML. "
1321 "Instead, you can render the message body as plain text. In order to do this "
1322 "in Icedove or Thunderbird, go to \"View\" → \"Message Body As\" → "
1323 "<i>Plain Text</i>."
1326 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1327 msgid "Step 4.C Edward's response"
1330 #. type: Content of: <html><body><section><div><div><div><h3>
1331 msgid "<em>Step 4.c</em> Receive a response"
1334 #. type: Content of: <html><body><section><div><div><div><p>
1336 "When Edward receives your email, it will use its private key to decrypt it, "
1337 "then reply to you."
1340 #. type: Content of: <html><body><section><div><div><div><p>
1342 "It may take two or three minutes for Edward to respond. In the meantime, you "
1343 "might want to skip ahead and check out the <a href=\"#section6\">Use it "
1344 "Well</a> section of this guide."
1347 #. type: Content of: <html><body><section><div><div><div><p>
1349 "Edward will send you an encrypted email back saying your email was received "
1350 "and decrypted. Your email client will automatically decrypt Edward's message."
1353 #. type: Content of: <html><body><section><div><div><div><p>
1355 "The OpenPGP button in the email will show a little green checkmark over the "
1356 "lock symbol to show the message is encrypted, and a little orange warning "
1357 "sign which means that you have accepted the key, but not verified it. When "
1358 "you have not yet accepted the key, you will see a little question mark "
1359 "there. Clicking the prompts in this button will lead you to key properties "
1363 #. type: Content of: <html><body><section><div><div><div><h3>
1364 msgid "<em>Step 4.d</em> Send a signed test email"
1367 #. type: Content of: <html><body><section><div><div><div><p>
1369 "GnuPG includes a way for you to sign messages and files, verifying that they "
1370 "came from you and that they weren't tampered with along the way. These "
1371 "signatures are stronger than their pen-and-paper cousins -- they're "
1372 "impossible to forge, because they're impossible to create without your "
1373 "private key (another reason to keep your private key safe)."
1376 #. type: Content of: <html><body><section><div><div><div><p>
1378 "You can sign messages to anyone, so it's a great way to make people aware "
1379 "that you use GnuPG and that they can communicate with you securely. If they "
1380 "don't have GnuPG, they will be able to read your message and see your "
1381 "signature. If they do have GnuPG, they'll also be able to verify that your "
1382 "signature is authentic."
1385 #. type: Content of: <html><body><section><div><div><div><p>
1387 "To sign an email to Edward, compose any message to the email address and "
1388 "click the pencil icon next to the lock icon so that it turns gold. If you "
1389 "sign a message, GnuPG may ask you for your password before it sends the "
1390 "message, because it needs to unlock your private key for signing."
1393 #. type: Content of: <html><body><section><div><div><div><p>
1395 "In \"Account Settings\" → \"End-To-End-Encryption\" you can opt to "
1396 "<i>add digital signature by default</i>."
1399 #. type: Content of: <html><body><section><div><div><div><h3>
1400 msgid "<em>Step 4.e</em> Receive a response"
1403 #. type: Content of: <html><body><section><div><div><div><p>
1405 "When Edward receives your email, he will use your public key (which you sent "
1406 "him in <a href=\"#step-3a\">Step 3.A</a>) to verify the message you sent has "
1407 "not been tampered with and to encrypt a reply to you."
1410 #. type: Content of: <html><body><section><div><div><div><p>
1412 "Edward's reply will arrive encrypted, because he prefers to use encryption "
1413 "whenever possible. If everything goes according to plan, it should say "
1414 "\"Your signature was verified.\" If your test signed email was also "
1415 "encrypted, he will mention that first."
1418 #. type: Content of: <html><body><section><div><div><div><p>
1420 "When you receive Edward's email and open it, your email client will "
1421 "automatically detect that it is encrypted with your public key, and then it "
1422 "will use your private key to decrypt it."
1425 #. type: Content of: <html><body><section><div><div><h2>
1426 msgid "<em>#5</em> Learn about the Web of Trust"
1429 #. type: Attribute 'alt' of: <html><body><section><div><div><p><img>
1430 msgid "Illustration of keys all interconnected with a web of lines"
1433 #. type: Content of: <html><body><section><div><div><p>
1435 "Email encryption is a powerful technology, but it has a weakness: it "
1436 "requires a way to verify that a person's public key is actually theirs. "
1437 "Otherwise, there would be no way to stop an attacker from making an email "
1438 "address with your friend's name, creating keys to go with it, and "
1439 "impersonating your friend. That's why the free software programmers that "
1440 "developed email encryption created keysigning and the Web of Trust."
1443 #. type: Content of: <html><body><section><div><div><p>
1445 "When you sign someone's key, you are publicly saying that you've verified "
1446 "that it belongs to them and not someone else."
1449 #. type: Content of: <html><body><section><div><div><p>
1451 "Signing keys and signing messages use the same type of mathematical "
1452 "operation, but they carry very different implications. It's a good practice "
1453 "to generally sign your email, but if you casually sign people's keys, you "
1454 "may accidentally end up vouching for the identity of an imposter."
1457 #. type: Content of: <html><body><section><div><div><p>
1459 "People who use your public key can see who has signed it. Once you've used "
1460 "GnuPG for a long time, your key may have hundreds of signatures. You can "
1461 "consider a key to be more trustworthy if it has many signatures from people "
1462 "that you trust. The Web of Trust is a constellation of GnuPG users, "
1463 "connected to each other by chains of trust expressed through signatures."
1466 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1467 msgid "Section 5: trusting a key"
1470 #. type: Content of: <html><body><section><div><div><div><h3>
1471 msgid "<em>Step 5.a</em> Sign a key"
1474 #. type: Content of: <html><body><section><div><div><div><p>
1476 "In your email program's menu, go to OpenPGP Key Manager and select <i>Key "
1477 "properties</i> by right clicking on Edward's key."
1480 #. type: Content of: <html><body><section><div><div><div><p>
1482 "Under \"Your Acceptance,\" you can select <i>Yes, I've verified in person "
1483 "this key has the correct fingerprint\"</i>."
1486 #. type: Content of: <html><body><section><div><div><div><p>
1488 "You've just effectively said \"I trust that Edward's public key actually "
1489 "belongs to Edward.\" This doesn't mean much because Edward isn't a real "
1490 "person, but it's good practice, and for real people it is important. You can "
1491 "read more about signing a person's key in the <a href=\"#check-ids-before-"
1492 "signing\">check IDs before signing</a> section."
1495 #. type: Content of: <html><body><section><div><div><div><h3>
1496 msgid "Identifying keys: Fingerprints and IDs"
1499 #. type: Content of: <html><body><section><div><div><div><p>
1501 "People's public keys are usually identified by their key fingerprint, which "
1502 "is a string of digits like F357AA1A5B1FA42CFD9FE52A9FF2194CC09A61E8 (for "
1503 "Edward's key). You can see the fingerprint for your public key, and other "
1504 "public keys saved on your computer, by going to OpenPGP Key Management in "
1505 "your email program's menu, then right clicking on the key and choosing Key "
1506 "Properties. It's good practice to share your fingerprint wherever you share "
1507 "your email address, so that people can double-check that they have the "
1508 "correct public key when they download yours from a keyserver."
1511 #. type: Content of: <html><body><section><div><div><div><p>
1513 "You may also see public keys referred to by a shorter keyID. This keyID is "
1514 "visible directly from the Key Management window. These eight character "
1515 "keyIDs were previously used for identification, which used to be safe, but "
1516 "is no longer reliable. You need to check the full fingerprint as part of "
1517 "verifying you have the correct key for the person you are trying to contact. "
1518 "Spoofing, in which someone intentionally generates a key with a fingerprint "
1519 "whose final eight characters are the same as another, is unfortunately "
1523 #. type: Content of: <html><body><section><div><div><div><h3>
1524 msgid "<em>Important:</em> What to consider when signing keys"
1527 #. type: Content of: <html><body><section><div><div><div><p>
1529 "Before signing a person's key, you need to be confident that it actually "
1530 "belongs to them, and that they are who they say they are. Ideally, this "
1531 "confidence comes from having interactions and conversations with them over "
1532 "time, and witnessing interactions between them and others. Whenever signing "
1533 "a key, ask to see the full public key fingerprint, and not just the shorter "
1534 "keyID. If you feel it's important to sign the key of someone you've just "
1535 "met, also ask them to show you their government identification, and make "
1536 "sure the name on the ID matches the name on the public key."
1539 #. type: Content of: <html><body><section><div><div><div><div><dl><dt>
1540 msgid "Master the Web of Trust"
1543 #. type: Content of: <html><body><section><div><div><div><div><dl><dd>
1545 "Unfortunately, trust does not spread between users the way <a href=\"https://"
1546 "fennetic.net/irc/finney.org/~hal/web_of_trust.html\">many people think</a>. "
1547 "One of the best ways to strengthen the GnuPG community is to deeply <a href="
1548 "\"https://www.gnupg.org/gph/en/manual/x334.html\">understand</a> the Web of "
1549 "Trust and to carefully sign as many people's keys as circumstances permit."
1552 #. type: Content of: <html><body><section><div><div><h2>
1553 msgid "<em>#6</em> Use it well"
1556 #. type: Content of: <html><body><section><div><div><p>
1558 "Everyone uses GnuPG a little differently, but it's important to follow some "
1559 "basic practices to keep your email secure. Not following them, you risk the "
1560 "privacy of the people you communicate with, as well as your own, and damage "
1564 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1565 msgid "Section 6: Use it Well (1)"
1568 #. type: Content of: <html><body><section><div><div><div><h3>
1569 msgid "When should I encrypt? When should I sign?"
1572 #. type: Content of: <html><body><section><div><div><div><p>
1574 "The more you can encrypt your messages, the better. If you only encrypt "
1575 "emails occasionally, each encrypted message could raise a red flag for "
1576 "surveillance systems. If all or most of your email is encrypted, people "
1577 "doing surveillance won't know where to start. That's not to say that only "
1578 "encrypting some of your email isn't helpful -- it's a great start and it "
1579 "makes bulk surveillance more difficult."
1582 #. type: Content of: <html><body><section><div><div><div><p>
1584 "Unless you don't want to reveal your own identity (which requires other "
1585 "protective measures), there's no reason not to sign every message, whether "
1586 "or not you are encrypting. In addition to allowing those with GnuPG to "
1587 "verify that the message came from you, signing is a non-intrusive way to "
1588 "remind everyone that you use GnuPG and show support for secure "
1589 "communication. If you often send signed messages to people that aren't "
1590 "familiar with GnuPG, it's nice to also include a link to this guide in your "
1591 "standard email signature (the text kind, not the cryptographic kind)."
1594 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1595 msgid "Section 6: Use it Well (2)"
1598 #. type: Content of: <html><body><section><div><div><div><h3>
1599 msgid "Be wary of invalid keys"
1602 #. type: Content of: <html><body><section><div><div><div><p>
1604 "GnuPG makes email safer, but it's still important to watch out for invalid "
1605 "keys, which might have fallen into the wrong hands. Email encrypted with "
1606 "invalid keys might be readable by surveillance programs."
1609 #. type: Content of: <html><body><section><div><div><div><p>
1611 "In your email program, go back to the first encrypted email that Edward sent "
1612 "you. Because Edward encrypted it with your public key, it will have a green "
1613 "checkmark a at the top \"OpenPGP\" button."
1616 #. type: Content of: <html><body><section><div><div><div><p>
1618 "<strong>When using GnuPG, make a habit of glancing at that button. The "
1619 "program will warn you there if you get an email signed with a key that can't "
1620 "be trusted.</strong>"
1623 #. type: Content of: <html><body><section><div><div><div><h3>
1624 msgid "Copy your revocation certificate to somewhere safe"
1627 #. type: Content of: <html><body><section><div><div><div><p>
1629 "Remember when you created your keys and saved the revocation certificate "
1630 "that GnuPG made? It's time to copy that certificate onto the safest storage "
1631 "that you have -- a flash drive, disk, or hard drive stored in a safe place "
1632 "in your home could work, not on a device you carry with you regularly. The "
1633 "safest way we know is actually to print the revocation certificate and store "
1634 "it in a safe place."
1637 #. type: Content of: <html><body><section><div><div><div><p>
1639 "If your private key ever gets lost or stolen, you'll need this certificate "
1640 "file to let people know that you are no longer using that keypair."
1643 #. type: Content of: <html><body><section><div><div><div><h3>
1644 msgid "<em>IMPORTANT:</em> ACT SWIFTLY if someone gets your private key"
1647 #. type: Content of: <html><body><section><div><div><div><p>
1649 "If you lose your private key or someone else gets a hold of it (say, by "
1650 "stealing or cracking your computer), it's important to revoke it immediately "
1651 "before someone else uses it to read your encrypted email or forge your "
1652 "signature. This guide doesn't cover how to revoke a key, but you can follow "
1653 "these <a href=\"https://www.hackdiary.com/2004/01/18/revoking-a-gpg-key/"
1654 "\">instructions</a>. After you're done revoking, make a new key and send an "
1655 "email to everyone with whom you usually use your key to make sure they know, "
1656 "including a copy of your new key."
1659 #. type: Content of: <html><body><section><div><div><div><h3>
1660 msgid "Webmail and GnuPG"
1663 #. type: Content of: <html><body><section><div><div><div><p>
1665 "When you use a web browser to access your email, you're using webmail, an "
1666 "email program stored on a distant website. Unlike webmail, your desktop "
1667 "email program runs on your own computer. Although webmail can't decrypt "
1668 "encrypted email, it will still display it in its encrypted form. If you "
1669 "primarily use webmail, you'll know to open your email client when you "
1670 "receive a scrambled email."
1673 #. type: Content of: <html><body><section><div><div><div><h3>
1674 msgid "Make your public key part of your online identity"
1677 #. type: Content of: <html><body><section><div><div><div><p>
1679 "First add your public key fingerprint to your email signature, then compose "
1680 "an email to at least five of your friends, telling them you just set up "
1681 "GnuPG and mentioning your public key fingerprint. Link to this guide and ask "
1682 "them to join you. Don't forget that there's also an awesome <a href="
1683 "\"infographic.html\">infographic to share.</a>"
1686 #. type: Content of: <html><body><section><div><div><div><p>
1688 "Start writing your public key fingerprint anywhere someone would see your "
1689 "email address: your social media profiles, blog, Website, or business card. "
1690 "(At the Free Software Foundation, we put ours on our <a href=\"https://fsf."
1691 "org/about/staff\">staff page</a>.) We need to get our culture to the point "
1692 "that we feel like something is missing when we see an email address without "
1693 "a public key fingerprint."
1696 #. type: Content of: <html><body><section><div><div><h2>
1697 msgid "<a href=\"next_steps.html\">Great job! Check out the next steps.</a>"
1700 #. type: Content of: <html><body><header><div><p>
1701 msgid "← Read the <a href=\"index.html\">full guide</a>"
1704 #. type: Content of: <html><body><header><div><h3><a>
1706 "<a href=\"https://fsf.org/share?u=https://u.fsf.org/zc&t=How%20public-key"
1707 "%20encryption%20works.%20Infographic%20via%20%40fsf\">"
1710 #. type: Content of: <html><body><header><div><h3>
1711 msgid " Share our infographic </a> with the hashtag #EmailSelfDefense"
1714 #. type: Attribute 'alt' of: <html><body><header><div><p><img>
1715 msgid "View & share our infographic"
1718 #. type: Content of: <html><body><header><div><h1>
1722 #. type: Content of: <html><body><section><div><div><h2>
1723 msgid "<em>#7</em> Next steps"
1726 #. type: Content of: <html><body><section><div><div><p>
1728 "You've now completed the basics of email encryption with GnuPG, taking "
1729 "action against bulk surveillance. These next steps will help make the most "
1730 "of the work you've done."
1733 #. type: Content of: <html><body><section><div><div><div><p>
1734 msgid "← <a href=\"index.html\">Return to the guide</a>"
1737 #. type: Content of: <html><body><section><div><div><div><h3>
1738 msgid "Join the movement"
1741 #. type: Content of: <html><body><section><div><div><div><p>
1743 "You've just taken a huge step towards protecting your privacy online. But "
1744 "each of us acting alone isn't enough. To topple bulk surveillance, we need "
1745 "to build a movement for the autonomy and freedom of all computer users. Join "
1746 "the Free Software Foundation's community to meet like-minded people and work "
1747 "together for change."
1750 #. type: Content of: <html><body><section><div><div><div><p>
1752 "<small>Read <a href=\"https://www.fsf.org/twitter\">why GNU Social and "
1753 "Mastodon are better than Twitter</a>, and <a href=\"https://www.fsf.org/"
1754 "facebook\">why we don't use Facebook</a>.</small>"
1757 #. type: Content of: <html><body><section><div><div><div><div><p>
1758 msgid "Low-volume mailing list"
1761 #. type: Content of: <html><body><section><div><div><div><div><form>
1763 "<input type=\"text\" value=\"Type your email...\" name=\"email-Primary\" id="
1764 "\"frmEmail\" /> <input type=\"submit\" value=\"Add me\" name=\"_qf_Edit_next"
1765 "\" /> <input type=\"hidden\" value=\"https://emailselfdefense.fsf.org/en/"
1766 "confirmation.html\" name=\"postURL\" /> <input type=\"hidden\" value=\"1\" "
1767 "name=\"group[25]\" /> <input type=\"hidden\" value=\"https://my.fsf.org/"
1768 "civicrm/profile?reset=1&gid=391\" name=\"cancelURL\" /> <input type="
1769 "\"hidden\" value=\"Edit:cancel\" name=\"_qf_default\" />"
1772 #. type: Content of: <html><body><section><div><div><div><div><p>
1774 "<small>Read our <a href=\"https://my.fsf.org/donate/privacypolicy.html"
1775 "\">privacy policy</a>.</small>"
1778 #. type: Content of: <html><body><section><div><div><div><h3>
1779 msgid "Bring Email Self-Defense to new people"
1782 #. type: Content of: <html><body><section><div><div><div><p>
1784 "Understanding and setting up email encryption is a daunting task for many. "
1785 "To welcome them, make it easy to find your public key and offer to help with "
1786 "encryption. Here are some suggestions:"
1789 #. type: Content of: <html><body><section><div><div><div><ul><li>
1791 "# Lead an Email Self-Defense workshop for your friends and community, using "
1792 "our <a href=\"workshops.html\">teaching guide</a>."
1795 #. type: Content of: <html><body><section><div><div><div><ul><li>
1797 "# Use <a href=\"https://fsf.org/share?u=https://u.fsf.org/zb&t=Encrypt"
1798 "%20with%20me%20using%20Email%20Self-Defense%20%40fsf\"> our sharing page</a> "
1799 "to compose a message to a few friends and ask them to join you in using "
1800 "encrypted email. Remember to include your GnuPG public key fingerprint so "
1801 "they can easily download your key."
1804 #. type: Content of: <html><body><section><div><div><div><ul><li>
1806 "# Add your public key fingerprint anywhere that you normally display your "
1807 "email address. Some good places are: your email signature (the text kind, "
1808 "not the cryptographic kind), social media profiles, blogs, Web sites, or "
1809 "business cards. At the Free Software Foundation, we put ours on our <a href="
1810 "\"https://fsf.org/about/staff\">staff page</a>."
1813 #. type: Content of: <html><body><section><div><div><div><h3>
1814 msgid "Protect more of your digital life"
1817 #. type: Content of: <html><body><section><div><div><div><p>
1819 "Learn surveillance-resistant technologies for instant messages, hard drive "
1820 "storage, online sharing, and more at <a href=\"https://directory.fsf.org/"
1821 "wiki/Collection:Privacy_pack\"> the Free Software Directory's Privacy Pack</"
1822 "a> and <a href=\"https://prism-break.org\">prism-break.org</a>."
1825 #. type: Content of: <html><body><section><div><div><div><p>
1827 "If you are using Windows, macOS or any other proprietary operating system, "
1828 "we recommend you switch to a free software operating system like GNU/Linux. "
1829 "This will make it much harder for attackers to enter your computer through "
1830 "hidden back doors. Check out the Free Software Foundation's <a href="
1831 "\"https://www.gnu.org/distros/free-distros.html\">endorsed versions of GNU/"
1835 #. type: Content of: <html><body><section><div><div><div><h3>
1836 msgid "Optional: Add more email protection with Tor"
1839 #. type: Content of: <html><body><section><div><div><div><p>
1841 "<a href=\"https://www.torproject.org/about/overview.html.en\">The Onion "
1842 "Router (Tor) network</a> wraps Internet communication in multiple layers of "
1843 "encryption and bounces it around the world several times. When used "
1844 "properly, Tor confuses surveillance field agents and the global surveillance "
1845 "apparatus alike. Using it simultaneously with GnuPG's encryption will give "
1846 "you the best results."
1849 #. type: Content of: <html><body><section><div><div><div><p>
1851 "To have your email program send and receive email over Tor, install the <a "
1852 "href=\"https://addons.mozilla.org/en-us/thunderbird/addon/torbirdy/"
1853 "\">Torbirdy plugin</a> by searching for it through Add-ons."
1856 #. type: Content of: <html><body><section><div><div><div><p>
1858 "Before beginning to check your email over Tor, make sure you understand <a "
1859 "href=\"https://www.torproject.org/docs/faq.html."
1860 "en#WhatProtectionsDoesTorProvide\"> the security tradeoffs involved</a>. "
1861 "This <a href=\"https://www.eff.org/pages/tor-and-https\">infographic</a> "
1862 "from our friends at the Electronic Frontier Foundation demonstrates how Tor "
1866 #. type: Attribute 'alt' of: <html><body><section><div><div><div><p><img>
1867 msgid "Section 7: Next Steps"
1870 #. type: Content of: <html><body><section><div><div><div><h3>
1871 msgid "Make Email Self-Defense tools even better"
1874 #. type: Content of: <html><body><section><div><div><div><p>
1876 "<a href=\"https://libreplanet.org/wiki/GPG_guide/Public_Review\">Leave "
1877 "feedback and suggest improvements to this guide</a>. We welcome "
1878 "translations, but we ask that you contact us at <a href=\"mailto:"
1879 "campaigns@fsf.org\">campaigns@fsf.org</a> before you start, so that we can "
1880 "connect you with other translators working in your language."
1883 #. type: Content of: <html><body><section><div><div><div><p>
1885 "If you like programming, you can contribute code to <a href=\"https://www."
1886 "gnupg.org/\">GnuPG</a>."
1889 #. type: Content of: <html><body><section><div><div><div><p>
1891 "To go the extra mile, support the Free Software Foundation so we can keep "
1892 "improving Email Self-Defense, and make more tools like it."
1895 #. type: Content of: <html><body><header><div><ul><li>
1896 msgid "<a href=\"index.html\">Set up guide</a>"
1899 #. type: Content of: <html><body><header><div><ul><li>
1900 msgid "<a href=\"workshops.html\" class=\"current\">Teach your friends</a>"
1903 #. type: Content of: <html><body><header><div><div><div><p>
1905 "We want to translate this guide into more languages, and make a version for "
1906 "encryption on mobile devices. Please donate, and help people around the "
1907 "world take the first step towards protecting their privacy with free "
1911 #. type: Content of: <html><body><header><div><div><p><a>
1913 "<a href=\"https://crm.fsf.org/civicrm/contribute/transact?reset=1&"
1914 "id=14&pk_campaign=email_self_defense&pk_kwd=guide_donate\">"
1917 #. type: Attribute 'alt' of: <html><body><header><div><div><p><a><img>
1918 msgid "View & share our infographic →"
1921 #. type: Content of: <html><body><header><div><div><p>
1923 "</a> Understanding and setting up email encryption sounds like a daunting "
1924 "task to many people. That's why helping your friends with GnuPG plays such "
1925 "an important role in helping spread encryption. Even if only one person "
1926 "shows up, that's still one more person using encryption who wasn't before. "
1927 "You have the power to help your friends keep their digital love letters "
1928 "private, and teach them about the importance of free software. If you use "
1929 "GnuPG to send and receive encrypted email, you're a perfect candidate for "
1930 "leading a workshop!"
1933 #. type: Attribute 'alt' of: <html><body><section><div><div><p><img>
1934 msgid "A small workshop among friends"
1937 #. type: Content of: <html><body><section><div><div><h2>
1938 msgid "<em>#1</em> Get your friends or community interested"
1941 #. type: Content of: <html><body><section><div><div><p>
1943 "If you hear friends grumbling about their lack of privacy, ask them if "
1944 "they're interested in attending a workshop on Email Self-Defense. If your "
1945 "friends don't grumble about privacy, they may need some convincing. You "
1946 "might even hear the classic \"if you've got nothing to hide, you've got "
1947 "nothing to fear\" argument against using encryption."
1950 #. type: Content of: <html><body><section><div><div><p>
1952 "Here are some talking points you can use to help explain why it's worth it "
1953 "to learn GnuPG. Mix and match whichever you think will make sense to your "
1957 #. type: Content of: <html><body><section><div><div><div><h3>
1958 msgid "Strength in numbers"
1961 #. type: Content of: <html><body><section><div><div><div><p>
1963 "Each person who chooses to resist mass surveillance with encryption makes it "
1964 "easier for others to resist as well. People normalizing the use of strong "
1965 "encryption has multiple powerful effects: it means those who need privacy "
1966 "the most, like potential whistle-blowers and activists, are more likely to "
1967 "learn about encryption. More people using encryption for more things also "
1968 "makes it harder for surveillance systems to single out those that can't "
1969 "afford to be found, and shows solidarity with those people."
1972 #. type: Content of: <html><body><section><div><div><div><h3>
1973 msgid "People you respect may already be using encryption"
1976 #. type: Content of: <html><body><section><div><div><div><p>
1978 "Many journalists, whistleblowers, activists, and researchers use GnuPG, so "
1979 "your friends might unknowingly have heard of a few people who use it "
1980 "already. You can search for \"BEGIN PUBLIC KEY BLOCK\" + keyword to help "
1981 "make a list of people and organizations who use GnuPG whom your community "
1982 "will likely recognize."
1985 #. type: Content of: <html><body><section><div><div><div><h3>
1986 msgid "Respect your friends' privacy"
1989 #. type: Content of: <html><body><section><div><div><div><p>
1991 "There's no objective way to judge what constitutes privacy-sensitive "
1992 "correspondence. As such, it's better not to presume that just because you "
1993 "find an email you sent to a friend innocuous, your friend (or a surveillance "
1994 "agent, for that matter!) feels the same way. Show your friends respect by "
1995 "encrypting your correspondence with them."
1998 #. type: Content of: <html><body><section><div><div><div><h3>
1999 msgid "Privacy technology is normal in the physical world"
2002 #. type: Content of: <html><body><section><div><div><div><p>
2004 "In the physical realm, we take window blinds, envelopes, and closed doors "
2005 "for granted as ways of protecting our privacy. Why should the digital realm "
2009 #. type: Content of: <html><body><section><div><div><div><h3>
2010 msgid "We shouldn't have to trust our email providers with our privacy"
2013 #. type: Content of: <html><body><section><div><div><div><p>
2015 "Some email providers are very trustworthy, but many have incentives not to "
2016 "protect your privacy and security. To be empowered digital citizens, we need "
2017 "to build our own security from the bottom up."
2020 #. type: Content of: <html><body><section><div><div><h2>
2021 msgid "<em>#2</em> Plan The Workshop"
2024 #. type: Content of: <html><body><section><div><div><p>
2026 "Once you've got at least one interested friend, pick a date and start "
2027 "planning out the workshop. Tell participants to bring their computer and ID "
2028 "(for signing each other's keys). If you'd like to make it easy for the "
2029 "participants to use <a href=\"https://theintercept.com/2015/03/26/"
2030 "passphrases-can-memorize-attackers-cant-guess/\">Diceware</a> for choosing "
2031 "passwords, get a pack of dice beforehand. Make sure the location you select "
2032 "has an easily accessible Internet connection, and make backup plans in case "
2033 "the connection stops working on the day of the workshop. Libraries, coffee "
2034 "shops, and community centers make great locations. Try to get all the "
2035 "participants to set up an email client based on Thunderbird before the "
2036 "event. Direct them to their email provider's IT department or help page if "
2037 "they run into errors."
2040 #. type: Content of: <html><body><section><div><div><p>
2042 "Estimate that the workshop will take at least forty minutes plus ten minutes "
2043 "for each participant. Plan extra time for questions and technical glitches."
2046 #. type: Content of: <html><body><section><div><div><p>
2048 "The success of the workshop requires understanding and catering to the "
2049 "unique backgrounds and needs of each group of participants. Workshops should "
2050 "stay small, so that each participant receives more individualized "
2051 "instruction. If more than a handful of people want to participate, keep the "
2052 "facilitator to participant ratio high by recruiting more facilitators, or by "
2053 "facilitating multiple workshops. Small workshops among friends work great!"
2056 #. type: Content of: <html><body><section><div><div><h2>
2057 msgid "<em>#3</em> Follow the guide as a group"
2060 #. type: Content of: <html><body><section><div><div><p>
2062 "Work through the Email Self-Defense guide a step at a time as a group. Talk "
2063 "about the steps in detail, but make sure not to overload the participants "
2064 "with minutia. Pitch the bulk of your instructions to the least tech-savvy "
2065 "participants. Make sure all the participants complete each step before the "
2066 "group moves on to the next one. Consider facilitating secondary workshops "
2067 "afterwards for people that had trouble grasping the concepts, or those that "
2068 "grasped them quickly and want to learn more."
2071 #. type: Content of: <html><body><section><div><div><p>
2073 "In <a href=\"index.html#section2\">Section 2</a> of the guide, make sure the "
2074 "participants upload their keys to the same keyserver so that they can "
2075 "immediately download each other's keys later (sometimes there is a delay in "
2076 "synchronization between keyservers). During <a href=\"index."
2077 "html#section3\">Section 3</a>, give the participants the option to send test "
2078 "messages to each other instead of or as well as Edward. Similarly, in <a "
2079 "href=\"index.html#section4\">Section 4</a>, encourage the participants to "
2080 "sign each other's keys. At the end, make sure to remind people to safely "
2081 "back up their revocation certificates."
2084 #. type: Content of: <html><body><section><div><div><h2>
2085 msgid "<em>#4</em> Explain the pitfalls"
2088 #. type: Content of: <html><body><section><div><div><p>
2090 "Remind participants that encryption works only when it's explicitly used; "
2091 "they won't be able to send an encrypted email to someone who hasn't already "
2092 "set up encryption. Also remind participants to double-check the encryption "
2093 "icon before hitting send, and that subjects and timestamps are never "
2097 #. type: Content of: <html><body><section><div><div><p>
2099 "Explain the <a href=\"https://www.gnu.org/proprietary/proprietary.html"
2100 "\">dangers of running a proprietary system</a> and advocate for free "
2101 "software, because without it, we can't <a href=\"https://www.fsf.org/"
2102 "bulletin/2013/fall/how-can-free-software-protect-us-from-surveillance"
2103 "\">meaningfully resist invasions of our digital privacy and autonomy</a>."
2106 #. type: Content of: <html><body><section><div><div><h2>
2107 msgid "<em>#5</em> Share additional resources"
2110 #. type: Content of: <html><body><section><div><div><p>
2112 "GnuPG's advanced options are far too complex to teach in a single workshop. "
2113 "If participants want to know more, point out the advanced subsections in the "
2114 "guide and consider organizing another workshop. You can also share <a href="
2115 "\"https://www.gnupg.org/documentation/index.html\">GnuPG's</a> official "
2116 "documentation and mailing lists, and the <a href=\"https://libreplanet.org/"
2117 "wiki/GPG_guide/Public_Review\">Email Self-Defense feedback</a> page. Many "
2118 "GNU/Linux distribution's Web sites also contain a page explaining some of "
2119 "GnuPG's advanced features."
2122 #. type: Content of: <html><body><section><div><div><h2>
2123 msgid "<em>#6</em> Follow up"
2126 #. type: Content of: <html><body><section><div><div><p>
2128 "Make sure everyone has shared email addresses and public key fingerprints "
2129 "before they leave. Encourage the participants to continue to gain GnuPG "
2130 "experience by emailing each other. Send them each an encrypted email one "
2131 "week after the event, reminding them to try adding their public key ID to "
2132 "places where they publicly list their email address."
2135 #. type: Content of: <html><body><section><div><div><p>
2137 "If you have any suggestions for improving this workshop guide, please let us "
2138 "know at <a href=\"mailto:campaigns@fsf.org\">campaigns@fsf.org</a>."
2141 #~ msgid "<a class=\"current\" href=\"/en\">English - v5.0</a>"
2142 #~ msgstr "<a class=\"current\" href=\"/gl\">Galego - v5.0</a>"
2145 #~ "If you already have an email program, you can skip to <a href="
2146 #~ "\"#section2\">Step 2</a>."
2148 #~ "Se xa tes un programa de xestión de correo electrónico, podes saltar a <a "
2149 #~ "href=\"#section2\">Paso 2</a>."
2152 #~ "Your macOS comes with a program called \"Terminal\" pre-installed, which "
2153 #~ "we'll use to set up your encryption with GnuPG, using the command line. "
2154 #~ "However, the default macOS package manager makes it difficult to install "
2155 #~ "GnuPG and other pieces of free software (like Emacs, GIMP, or Inkscape)."
2157 #~ "O teu macOS ven cun programa chamado \"Terminal\" xa instalado, o cal "
2158 #~ "usaremos para configurar o teu cifrado con GnuPG, usando a liña de "
2159 #~ "comandos. Non obstante, o administrador de paquetes de macOS "
2160 #~ "predeterminado dificulta a instalación de GnuPG e outro software libre "
2161 #~ "(como Emacs, GIMP ou Inkscape)."
2164 #~ "<code>brew install gnupg gnupg2</code>. After installation is done, you "
2165 #~ "can follow the steps of the rest of this guide."
2167 #~ "<code>brew install gnupg gnupg2</code>. Tras a instalación, podes seguir "
2168 #~ "os pasos do resto desta guía."
2171 #~ "To follow the rest of the steps in this guide, you'll use the program "
2172 #~ "called \"PowerShell\", which is a program you'll see elsewhere referred "
2173 #~ "to as a \"terminal.\" This allows you to operate your computer using the "
2176 #~ "Para seguir os resto dos pasos nesta guía, usarás o programa chamado "
2177 #~ "\"PowerShell\", que verás noutros lugares aos que fai referencia como "
2178 #~ "\"terminal\". Isto permite controlar o teu computador usando a liñá de "