href="//static.fsf.org/nosvn/enc-dev0/img/favicon.ico" />
</head>
-<body><iframe src="//static.fsf.org/nosvn/banners/2017fundraiser/" width="100%" height="100%" scrolling="no" style="overflow: hidden; border: 0 none; display: block;"></iframe>
+<body>
<!-- ~~~~~~~~~ GnuPG Header and introduction text ~~~~~~~~~ -->
<header class="row" id="header"><div>
<li><a href="/sq">Shqip - v4.0</a></li>
<li><a href="/sv">svenska - v4.0</a></li>
<li><a href="/tr">Türkçe - v4.0</a></li>
-<li><a
-href="https://libreplanet.org/wiki/GPG_guide/Translation_Guide"><strong><span
+<li><a href="https://libreplanet.org/wiki/GPG_guide/Translation_Guide"><strong><span
style="color: #2F5FAA;">Translate!</span></strong></a></li>
</ul>
<li class="spacer"><a href="index.html" class="current">GNU/Linux</a></li>
<li><a href="mac.html">Mac OS</a></li>
<li><a href="windows.html">Windows</a></li>
-<li><a href="workshops.html">Teach your friends</a></li>
-<li><a href="https://fsf.org/share?u=https://u.fsf.org/zb&t=Email
-encryption for everyone via %40fsf">Share
-<img
-src="//static.fsf.org/nosvn/enc-dev0/img/gnu-social.png"
-class="share-logo"
+<li class="spacer"><a href="workshops.html">Teach your friends</a></li>
+<li class="spacer"><a
+href="https://fsf.org/share?u=https://u.fsf.org/zb&t=Email encryption for everyone via %40fsf">
+Share
+<img src="//static.fsf.org/nosvn/enc-dev0/img/gnu-social.png" class="share-logo"
alt="[GNU Social]" />
-<img
-src="//static.fsf.org/nosvn/enc-dev0/img/pump.io.png"
-class="share-logo"
+<img src="//static.fsf.org/nosvn/enc-dev0/img/pump.io.png" class="share-logo"
alt="[Pump.io]" />
-<img
-src="//static.fsf.org/nosvn/enc-dev0/img/reddit-alien.png"
-class="share-logo"
+<img src="//static.fsf.org/nosvn/enc-dev0/img/reddit-alien.png" class="share-logo"
alt="[Reddit]" />
-<img
-src="//static.fsf.org/nosvn/enc-dev0/img/hacker-news.png"
-class="share-logo"
-alt="[Hacker News]" />
-</a></li>
+<img src="//static.fsf.org/nosvn/enc-dev0/img/hacker-news.png" class="share-logo"
+alt="[Hacker News]" /></a></li>
</ul>
<!-- ~~~~~~~~~ FSF Introduction ~~~~~~~~~ -->
src="//static.fsf.org/nosvn/enc-dev0/img/en/infographic-button.png"
alt="View & share our infographic →" /></a>
Bulk surveillance violates our fundamental rights and makes free speech
-risky. This guide will teach you a basic surveillance self-defense skill:
-email encryption. Once you've finished, you'll be able to send and receive
-emails that are scrambled to make sure anyone, including a surveillance agent
-or thief, intercepting your email can't read them. All you need is a computer
-with an Internet connection, an email account, and about forty minutes.</p>
+risky. This guide will teach you a basic surveillance self-defense skill: email
+encryption. Once you've finished, you'll be able to send and receive emails
+that are scrambled to make sure a surveillance agent or thief intercepting
+your email can't read them. All you need is a computer with an Internet
+connection, an email account, and about forty minutes.</p>
<p>Even if you have nothing to hide, using encryption helps protect the privacy
of people you communicate with, and makes life difficult for bulk surveillance
<!-- ~~~~~~~~~ a div for each step ~~~~~~~~~ -->
<div id="step-1b" class="step">
<div class="sidebar">
-
<ul class="images">
-<li><img
-src="//static.fsf.org/nosvn/enc-dev0/img/en/screenshots/step1b-01-tools-addons.png"
+<li><img src="//static.fsf.org/nosvn/enc-dev0/img/en/screenshots/step1b-01-tools-addons.png"
alt="Step 1.B: Tools -> Add-ons" /></li>
-<li><img
-src="//static.fsf.org/nosvn/enc-dev0/img/en/screenshots/step1b-02-search.png"
+<li><img src="//static.fsf.org/nosvn/enc-dev0/img/en/screenshots/step1b-02-search.png"
alt="Step 1.B: Search Add-ons" /></li>
-<li><img
-src="//static.fsf.org/nosvn/enc-dev0/img/en/screenshots/step1b-03-install.png"
+<li><img src="//static.fsf.org/nosvn/enc-dev0/img/en/screenshots/step1b-03-install.png"
alt="Step 1.B: Install Add-ons" /></li>
</ul>
<h3><em>Step 1.b</em> Install the Enigmail plugin for your email program</h3>
<p>In your email program's menu, select Add-ons (it may be in the Tools
-section). Make sure Extensions is selected on the left. Do you see Enigmail? If
-so, skip this step.</p>
+section). Make sure Extensions is selected on the left. Do you see Enigmail?
+Make sure it's the latest version. If so, skip this step.</p>
<p>If not, search "Enigmail" with the search bar in the upper right. You
can take it from here. Restart your email program when you're done.</p>
-<p>Enigmail versions prior to 2.0.5 have serious security issues, so make sure you install version 2.0.5 or later.</p>
+<p>There are major security flaws in versions of GnuPG prior to 2.2.8, and
+Enigmail prior to 2.0.7. Make sure you have GnuPG 2.2.8 and Enigmail 2.0.7,
+or later versions.</p>
+
+<p>Note: As of June 18, 2018, GnuPG 2.2.8 is unavailable for Debian stable and
+testing.</p>
<!-- ~~~~~~~~~ Troubleshooting ~~~~~~~~~ -->
<div class="troubleshooting">
is faster but not as secure. Using Diceware takes longer and requires
dice, but creates a password that is much harder for attackers figure
out. To use it, read the section "Make a secure passphrase with Diceware" in <a
-href="https://theintercept.com/2015/03/26/passphrases-can-memorize-attackers-cant-guess/">this
-article</a> by Micah Lee.</li>
+href="https://theintercept.com/2015/03/26/passphrases-can-memorize-attackers-cant-guess/">
+this article</a> by Micah Lee.</li>
</ul>
<p>If you'd like to pick a password manually, come up with something
<dt>More resources</dt>
<dd>If you're having trouble with our
instructions or just want to learn more, check out <a
-href="https://enigmail.wiki/Key_Management#Generating_your_own_key_pair">Enigmail's
-wiki instructions for key generation</a>.</dd>
+href="https://enigmail.wiki/Key_Management#Generating_your_own_key_pair">
+Enigmail's wiki instructions for key generation</a>.</dd>
<dt class="feedback">Don't see a solution to your problem?</dt>
<dd class="feedback">Please let us know on the <a
<dt>More documentation</dt>
<dd>If you're having trouble with our
instructions or just want to learn more, check out <a
-href="https://www.enigmail.net/documentation/quickstart-ch2.php#id2533620">Enigmail's
-documentation</a>.</dd>
+href="https://www.enigmail.net/documentation/quickstart-ch2.php#id2533620">
+Enigmail's documentation</a>.</dd>
<dt class="feedback">Don't see a solution to your problem?</dt>
<dd class="feedback">Please let us know on the <a
<dt>More resources</dt>
<dd>If you're still having trouble with our
instructions or just want to learn more, check out <a
-href="https://enigmail.wiki/Signature_and_Encryption#Encrypting_a_message">Enigmail's
-wiki</a>.</dd>
+href="https://enigmail.wiki/Signature_and_Encryption#Encrypting_a_message">
+Enigmail's wiki</a>.</dd>
<dt class="feedback">Don't see a solution to your problem?</dt>
<dd class="feedback">Please let us know on the <a
send attachments, Enigmail will give you the choice to encrypt them or not,
independent of the actual email.</p>
+<p>For greater security against potential attacks, you can turn off
+HTML. Instead, you can render the message body as plain text. In order
+to do this in Thunderbird, go to View > Message Body As > Plain
+Text.</p>
+
</div><!-- End .main -->
</div><!-- End #step-headers_unencrypted .step-->
<form enctype="application/x-www-form-urlencoded" action="/mk_path.cgi"
method="get">
-<p><strong>From:</strong><input type="text" placeholder="xD41A008"
+<p><strong>From:</strong><input type="text" value="xD41A008"
name="FROM"></p>
-<p><strong>To:</strong><input type="text" placeholder="50BD01x4" name="TO"></p>
+<p><strong>To:</strong><input type="text" value="50BD01x4" name="TO"></p>
<p class="buttons"><input type="submit" value="trust paths" name="PATHS"><input
type="reset" value="reset" name=".reset"></p>
wherever you share your email address, so that people can double-check that
they have the correct public key when they download yours from a keyserver.</p>
-<p class="notes">You may also see public keys referred to by their key ID,
-which is simply the last eight digits of the fingerprint, like C09A61E8 for
-Edward. The key ID is visible directly from the Key Management window. This
-key ID is like a person's first name (it is a useful shorthand but may not be
-unique to a given key), whereas the fingerprint actually identifies the key
-uniquely without the possibility of confusion. If you only have the key ID,
-you can still look up the key (as well as its fingerprint), like you did in
-Step 3, but if multiple options appear, you'll need the fingerprint of the
-person to whom you are trying to communicate to verify which one to use.</p>
+<p class="notes">You may also see public keys referred to by a shorter
+key ID. This key ID is visible directly from the Key Management
+window. These eight character key IDs were previously used for
+identification, which used to be safe, but is no longer reliable. You
+need to check the full fingerprint as part of verifying you have the
+correct key for the person you are trying to contact. Spoofing, in
+which someone intentionally generates a key with a fingerprint whose
+final eight characters are the same as another, is unfortunately
+common.</p>
</div><!-- End .main -->
</div><!-- End #step-identify_keys .step-->
Attribution 4.0 license (or later version)</a>, and the rest of it is under
a <a href="https://creativecommons.org/licenses/by-sa/4.0">Creative Commons
Attribution-ShareAlike 4.0 license (or later version)</a>. Download the <a
-href="http://agpl.fsf.org/emailselfdefense.fsf.org/edward/CURRENT/edward.tar.gz">source
-code of Edward reply bot</a> by Andrew Engelbrecht
+href="http://agpl.fsf.org/emailselfdefense.fsf.org/edward/CURRENT/edward.tar.gz">
+source code of Edward reply bot</a> by Andrew Engelbrecht
<sudoman@ninthfloor.org> and Josh Drake <zamnedix@gnu.org>,
available under the GNU Affero General Public License. <a
href="http://www.gnu.org/licenses/license-list.html#OtherLicenses">Why these
alt="Journalism++" /></a></p><!-- /.credits -->
</div></footer><!-- End #footer -->
-<script src="//static.fsf.org/nosvn/enc-dev0/js/jquery-1.11.0.min.js"></script>
-<script src="//static.fsf.org/nosvn/enc-dev0/js/scripts.js"></script>
+<script type="text/javascript"
+src="//static.fsf.org/nosvn/enc-dev0/js/jquery-1.11.0.min.js"></script>
+<script type="text/javascript"
+src="//static.fsf.org/nosvn/enc-dev0/js/scripts.js"></script>
<!-- Piwik -->
-<script type="text/javascript" >
-// @license magnet:?xt=urn:btih:1f739d935676111cfff4b4693e3816e664797050&dn=gpl-3.0.txt GPL-v3-or-Later
+<script type="text/javascript" ><!--
+// @license magnet:?xt=urn:btih:1f739d935676111cfff4b4693e3816e664797050&dn=gpl-3.0.txt GPL-v3-or-Later
var pkBaseURL = (("https:" == document.location.protocol) ? "https://piwik.fsf.org/" : "http://piwik.fsf.org/");
document.write(unescape("%3Cscript src='" + pkBaseURL + "piwik.js' type='text/javascript'%3E%3C/script%3E"));
try {
piwikTracker.enableLinkTracking();
} catch( err ) {}
// @license-end
-</script><noscript><p><img src="//piwik.fsf.org/piwik.php?idsite=13" style="border:0" alt="" /></p></noscript>
+--></script>
+<noscript><p><img
+src="//piwik.fsf.org/piwik.php?idsite=13" style="border:0"
+alt="" /></p></noscript>
<!-- End Piwik Tracking Code -->
-
</body>
</html>
projects / enc-live.git / blobdiff