Subj : Re: encrypted email provi To : tallship From : N1uro Date : Tue Jun 01 2021 10:07 am Hello tallship; -=> tallship wrote to Oli <=- ta> 1.) Yes, encrypted email providers are a misnomer. I can't tell you how ta> many people proudly boast that they have a protonmail account so their ta> mail is encrypted.... Only to discover it isn't, because when they send ta> messages outside the network it's in clear text, unless your keys have ta> been added to each other's keyrings. This also depends on the service(s) offered at BOTH ends. Email typically between my email server and gmail often are encrypted by default using smtpS instead of standard unencrypted smtp. Of course, as I said, both sides must make allocations to send and receive using tls. ta> https://pgp.mit.edu is traditionally where I keep my keys available, ta> and it looks like sks-keyservers.net has been deprecated. I also take ta> advantage of the proofs available via https://keybase.io ta> I use PGP keys all the time, but not always. I typically sign with my ta> keys so that the authenticity can be relatively assured, but for realy ta> encrypted communications.... I too store my key on pgp.mit.edu. Have for years. ta> XMPP is good too if you're using OMEMO, on Android, Conversations or ta> Conv6sations are good clients, and you have a lot of choices for ta> desktop clients. I personally prefer Gajim. Have you tried xabber for droid? For desktop pidgin seems to be multi-OS compatible. ta> Anything from the Google Playstore should be considered ta> spyware - because it is. Amen! ta> For Desktop, Most of my customers use Thunderbird, as do I (conigured ta> with OpenPGP), There are a couple of other good email clients, but ta> Outlook isn't one of them. Unfortunately, in many companies, they've literally "bought" into the whole Micro$oft bill of no-goods. Exchange server, outlook, etc. I'm a bit of a fan of Evolution written by Novell Netware. It gives the user much of the features that Outlook delivers to the corporate user without the need to make any such purchase that M$ Office requires. There's a windows port for the desktop, and its in most linux distro repositories. ta> I also recommend that people run their own email servers - ta> SMTP/IMAP/OpenDKIM/SpamAssasin/etc. The combo I like is Postfix with ta> Dovecot. I do realize, however, that email is a complete mess to set up ta> correctly out of the box nowadays, so you should have someone who is ta> good at it do the install :) With DKIM, DMARC, SPF blah blah blah... ta> Yah, nightmare, but once you set it up it's a dream to host your own ta> domain's email services. +1! That's what I use as well. In fact, email coming into my SBBS for anyone -must- go through my postfix server, pass RBL lookups, be scanned by SA and ClamAV (via ClamSMTP), etc etc before getting passed to the BBS on a non standard port. For outbound from the BBS, it follows a similar reverse path where mails to the outside world still get scanned in case a user sends a file with a virus included. I love how flexible postfix is, and in fact... if you've ever read an exchange server administration book (and one would have to be quite constipated!) it even strongly suggests to filter your mails through postfix with numerous filters installed PRIOR to passing them into exchange. I do the same with any smtp based mails that get passed onto amateur radio using my axMail-FAX system for packet which makes it a lot more superior than any of the other systems used on amateur RF. ta> I don't think that using TOR lends itself to a respectible business ta> impression, so I would definitely advise against it in the commonplace ta> business world of communications - other than that of course... it ta> freakin' rocks! As an outsider dealing with any company, if they lived on TOR I'd walk right on by. It just has way too many negatives associated with it reputation wise. I'd wonder if their online chat support is hosted by chatterbate .... When the chips are down, the cow is empty. --- MultiMail/Linux v0.52 * Origin: Carnage - risen from the dead now on SBBS (21:4/107) .