PGP for OS X requires that SSL/TLS is disabled, does that mean that if it doesn't find a PGPKey for the recipient, my emails will be sent entirely unencrypted?
Asked by
TaoSan (
7111)
February 18th, 2009
Observing members:
0
Composing members:
0
9 Answers
Don’t you need the key to decrypt the message with PGP?
SSL is a transmission privacy system, and PGP is a message privacy system…
If you encrypt with the public key, then only the private key (in this case non-existent) would be able to decrypt the message.
I don’t think the message would be unencrypted, just unreadable…
@blastfamy
Nice approach but it is not that simply. In order for PGP to work, SSL has to be switched off. PGP will look up if an email recipient is listed in the global PGP LDAP, if not, it sends unencrypted.
The logic is simply that if PGP were only a “decryption cipher”, then why the need to switch off SSL/TLS. Since the client can’t send with SSL on I’d guess they use an SSH Tunnel of sorts.
Question is, does the plugin generally use a secured tunnel, or only if the global LDAP has a public key for the recipient email.
Reading through the documentation it seems one has to forward the pop and smtp ports to the local machine, in order to avoid sending unencrypted in case the receiver has no public key.
I thought you needed the triple rod O32DF cable to be connected to the SF8 swich. But that depends on whether you had the QFB2 update yet and what server you’re running it on.
lol, that was very informative, Mr. Coffee.
I can’t imagine why PGP would require you to disable SSL since we use both on Windows machines daily. Must be an OSX thing. Maybe they have embedded encryption? (not sure how that would make sense)
i actually didn’t think you were, but there’s no corporate sponsorship available for a joke about Mrs. Coffee. Sorry anyways : )
I’d be Miss Coffee but that’s ok. :-)
@fireside
Yeah, we figured it out. PGP actually uses a SSH Tunnel to their own servers. In Windows, PGP disables SSL automatically without bothering the user, in the OSX version it keeps popping up warnings if the client has SSL enabled.
Answer this question
This question is in the General Section. Responses must be helpful and on-topic.