- English - v4.0 -
- ÄeÅ¡tina - v4.0 -
- Deutsch - v3.0 +
- ÄeÅ¡tina - v4.0 +
- Deutsch - v4.0
- ελληνικά - v3.0
- español - v4.0
- ÙØ§Ø±Ø³Û - v4.0 @@ -39,35 +39,27 @@ href="//static.fsf.org/nosvn/enc-dev0/img/favicon.ico" />
- Shqip - v4.0
- svenska - v4.0
- Türkçe - v4.0 -
- Translate! +
- ç®ä½ä¸æ - v4.0 +
- +Translate!
![[GNU Social]](http://static.fsf.org/nosvn/enc-dev0/img/gnu-social.png)
-
+![[Reddit]](http://static.fsf.org/nosvn/enc-dev0/img/reddit-alien.png)
-
This guide relies on software which is freely licensed; it's completely transparent and anyone can copy it or make their own version. This -makes it safer from surveillance than proprietary software (like Windows). To -defend your freedom as well as protect yourself from surveillance, we recommend -you switch to a free software operating system like GNU/Linux. Learn more -about free software at fsf.org.
+makes it safer from surveillance than proprietary software (like Windows or Mac +OS). To defend your freedom as well as protect yourself from surveillance, we +recommend you switch to a free software operating system like GNU/Linux. Learn +more about free software at fsf.org.To get started, you'll need the IceDove desktop email program installed on your computer. For your system, IceDove may be known by the alternate name @@ -170,6 +162,15 @@ alt="Step 1.A: Install Wizard" />
Open your email program and follow the wizard (step-by-step walkthrough) that sets it up with your email account.
+Look for the letters SSL, TLS, or STARTTLS to the right of the servers +when you're setting up your account. If you don't see them, you will still +be able to use encryption, but this means that the people running your email +system are running behind the industry standard in protecting your security +and privacy. We recommend that you send them a friendly email asking them +to enable SSL, TLS, or STARTTLS for your email server. They will know what +you're talking about, so it's worth making the request even if you aren't +an expert on these security systems.
+- The wizard doesn't launch
- You can launch the wizard yourself, but the menu option for doing so is -named differently in each email programs. The button to launch it will be in +named differently in each email program. The button to launch it will be in the program's main menu, under "New" or something similar, titled something like "Add account" or "New/Existing email account." @@ -207,22 +208,21 @@ href="https://www.gpg4win.org/">Download and install it, choosing default options whenever asked. After it's installed, you can close any windows that it creates. +
There are major security flaws in versions of GnuPG provided by GPG4Win +prior to 3.1.2. Make sure you have GPG4Win 3.1.2 or later.
+-
-
-
-
Step 1.c Install the Enigmail plugin for your email program
In your email program's menu, select Add-ons (it may be in the Tools -section). Make sure Extensions is selected on the left. Do you see Enigmail? If -so, skip this step.
+section). Make sure Extensions is selected on the left. Do you see Enigmail? +Make sure it's the latest version. If so, skip this step.If not, search "Enigmail" with the search bar in the upper right. You can take it from here. Restart your email program when you're done.
+There are major security flaws in Enigmail prior to version 2.0.7. Make +sure you have Enigmail 2.0.7 or later.
+Your private key is more like a physical key, because you keep it to yourself (on your computer). You use GnuPG and your private key together to descramble encrypted emails other people send to you. You should never share you private key with anyone, under any +bold;">You should never share your private key with anyone, under any circumstances.
In addition to encryption and decryption, you can also use these keys to @@ -323,10 +333,10 @@ key pair for signing and encrypting my email."
If you'd like to pick a password manually, come up with something @@ -362,15 +372,8 @@ Tools.
In your email program's menu, select Enigmail → Key Management.
-Right click on your key and select Upload Public Keys to Keyserver. Use -the default keyserver in the popup.
+Right click on your key and select Upload Public Keys to Keyserver. You +don't have to use the default keyserver. If, after research, you would like +to change to a different default keyserver, you can change that setting +manually in the Enigmail preferences.
Now someone who wants to send you an encrypted message can download your public key from the Internet. There are multiple keyservers @@ -444,8 +449,8 @@ keyserver.
For greater security against potential attacks, you can turn off +HTML. Instead, you can render the message body as plain text.
+ @@ -653,20 +661,12 @@ independent of the actual email.Step 3.c Receive a response
When Edward receives your email, he will use his private key to decrypt -it, then use your public key (which you sent him in Step -3.A) to encrypt his reply to you.
+it, then reply to you.It may take two or three minutes for Edward to respond. In the meantime, you might want to skip ahead and check out the Use it Well section of this guide.
-When you receive Edward's email and open it, Enigmail will automatically -detect that it is encrypted with your public key, and then it will use your -private key to decrypt it.
- -Notice the bar that Enigmail shows you above the message, with information -about the status of Edward's key.
- @@ -705,9 +705,9 @@ be encrypted, signed, both, or neither.Step 3.e Receive a response
-When Edward receives your email, he will use your public key (which you -sent him in Step 3.A) to verify that your signature -is authentic and the message you sent has not been tampered with.
+When Edward receives your email, he will use your public key (which +you sent him in Step 3.A) to verify the message +you sent has not been tampered with and to encrypt his reply to you.
It may take two or three minutes for Edward to
respond. In the meantime, you might want to skip ahead and check out the
+ When you receive Edward's email and open it, Enigmail will
+automatically detect that it is encrypted with your public key, and
+then it will use your private key to decrypt it. Notice the bar that Enigmail shows you above the message, with
+information about the status of Edward's key.