<title>Email Self-Defense - a guide to fighting surveillance with GnuPG
encryption</title>
<meta name="keywords" content="GnuPG, GPG, openpgp, surveillance, privacy,
-email, security, GnuPG2" />
+email, security, GnuPG2, encryption" />
<meta name="description" content="Email surveillance violates our fundamental
rights and makes free speech risky. This guide will teach you email
self-defense in 40 minutes with GnuPG." />
<!-- ~~~~~~~~~ MACOS ~~~~~~~~~ -->
<div class="troubleshooting">
-<h4>MacOS</h4>
+<h4>macOS</h4>
<dl>
<dt>Use a third-party package manager to install GnuPG</dt>
<div class="main">
<h3><em>Step 2.a</em> Make a keypair</h3>
-<h4>Make your keypair</h4>
-<p>Open a terminal using <kbd>ctrl + alt + t</kbd> (on GNU/linux), or find it in your applications, and use the following code to create your keypair:</p>
+<h6>Make your keypair</h6>
+<p>Open a terminal. You should be able to find it in your applications (some GNU/Linux systems respond to the the <span style="color:#2f5faa; font-family: monospace;">ctrl + alt + t</span> shortcut). Use the following code to create your keypair in the terminal:</p>
<p class="notes">We will use the command line in a terminal to create a keypair using the GnuPG program. A terminal should be installed on your GNU/Linux operating system, if you are using a macOS or Windows OS system, use the programs "Terminal" (macOS) or "PowerShell" (Windows) that were also used in section 1.</p>
<dl>
<dt>I'm not sure the import worked correctly</dt>
<dd>
-Look for "Account settings" → "End-To-End Encryption" (Under "Edit" (in Icedove) or "Tools" (in Thunderbird)). Here you can see if your personal key associated with this email is found. If it is not, you can try again via the <i>Add key</i> option. Make sure you have the correct, active, secret key file.
+Look for "Account settings" → "End-To-End Encryption." Here you can see if your personal key associated with this email is found. If it is not, you can try again via the <span style="color:#2f5faa;">Add key</span> option. Make sure you have the correct, active, secret key file.
</dd>
<dt class="feedback">Don't see a solution to your problem?</dt>
<p>To encrypt an email to Edward, you need its public key, so now you'll have
to download it from a keyserver. You can do this in two different ways:</p>
-<p><strong>Option 1.</strong> In the email answer you received from Edward as a response to your first email, Edward's public key was included. On the right of the email, just above the writing area, you will find an "OpenPGP" button that has a lock and a little wheel next to it. Click that, and select <i>Discover</i> next to the text: "This message was sent with a key that you don't have yet." A popup with Edward's key details will follow.</p>
+<p><strong>Option 1.</strong> In the email answer you received from Edward as a response to your first email, Edward's public key was included. On the right of the email, just above the writing area, you will find an "OpenPGP" button that has a lock and a little wheel next to it. Click that, and select <span style="color:#2f5faa">Discover</span> next to the text: "This message was signed with a key that you don't yet have." A popup with Edward's key details will follow.</p>
<p><strong>Option 2.</strong> Open your OpenPGP manager and under "Keyserver" choose <i>Discover Keys Online</i>. Here, fill in Edward's email address, and import Edward's key.</p>
<dl>
<dt>"Recipients not valid, not trusted or not found"</dt>
-<dd>You may be trying to send an encrypted email to someone when you do not have their public key yet. Make sure you follow the steps above to import the key to your key manager. Open OpenPGP Key Manager to make sure the recipient is listed there.</dd>
+<dd>You could get the above error message, or something along these lines: "Unable to send this message with end-to-end encryption, because there are problems with the keys of the following recipients: ..." In these cases, you may be trying to send an encrypted email to someone when you do not have their public key yet. Make sure you follow the steps above to import the key to your key manager. Open OpenPGP Key Manager to make sure the recipient is listed there.</dd>
<dt>Unable to send message</dt>
<dd>You could get the following message when trying to send your encrypted email: "Unable to send this message with end-to-end encryption, because there are problems with the keys of the following recipients: edward-en@fsf.org." This usually means you imported the key with the "unaccepted (unverified) option." Go to the "key properties" of this key by right clicking on the key in the OpenPGP Key Manager, and select the option <i>Yes, but I have not verified that this is the correct key</i> in the "Acceptance" option at the bottom of this window. Resend the email.</dd>
<p>For greater security against potential attacks, you can turn off
HTML. Instead, you can render the message body as plain text. In order
-to do this in Icedove or Thunderbird, go to View > Message Body As > Plain
-Text.</p>
+to do this in Icedove or Thunderbird, go to "View" → "Message Body As" → "Plain
+Text."</p>
</div><!-- End .main -->
</div><!-- End #step-headers_unencrypted .step-->
projects / enc.git / blobdiff