Using GPG to encrypt or sign e-mail
Hosted by Ahuka on 2014-06-05 is flagged as Clean and is released under a CC-BY-SA license.
Listen in ogg, spx, or mp3 format. | Comments (0)
In this open series, you can contribute shows that are on the topic of Privacy and Security
This is a recording of a talk I gave at my local Linux Users Group, the Washtenaw Linux Users Group, or LUGWASH. In this talk I cover some of the theory of encryption, how to generate keys, and using this with Thunderbird, with Gmail, and on an Android phone.
Subscribe to the comments RSS feed.
Comment #1 posted on 2014-06-06T06:54:32Z by etalas
I've thought the 8char key IDs aren't enough nowadays
Only listened to the first third yet (nice talk so far, questions from the audience are a little hard to understand) but I've thought the eight character key IDs aren't enough nowadays b/c it's too easy to create a keypair that has the same first eight chars of an ID. I think there was something Debian-related about this a few years back.
In the meantime I came across those two helpful links regarding GPG/PGP:
- why you should use subkeys: https://wiki.debian.org/Subkeys
- a "best practices" for OpenPGP: https://we.riseup.net/riseuplabs+paow/openpgp-best-practices ([EDIT: replaced by https://help.riseup.net/en/security/message-security/openpgp/gpg-best-practices)
keep up the good work!