Enigmail Configuration Manual

Enigmail User Preferences Information


Enigmail has many settings that can be accessed by means of User Preferences added to your user.js or prefs.js file.
Most of these settings can be accessed by means of the UI, and should only be set by means of a pref in user.js or prefs.js if you do not wish them ever to be changed.


UI: indicates that this value can be set using the Enigmail UI
JS: indicates that this value can only be set by entering it in user.js or prefs.js

Default preference values

The default values can be reviewed in the enigmail.js source. At the end of this page, you can review the per-identity/account settings default values.

UI preferences

The last configured Enigmail version

This should not be changed.

Hide many settings and menus for not advanced users

UI: OpenPGP > Preferences > Basic; Display expert settings
Off by default.

Path to gpg executable

UI: OpenPGP > Preferences > Basic; GnuPG executable path
If gpg executable is in the path, it can be left blank.

Enable --always-trust for message sending

UI: OpenPGP > Preferences > Sending; Always trust user ID
On by default.

Enable automatically decrypt/verify

UI: OpenPGP > Automatically decrypt/verify messages
On by default.

Enable confirm dialog before sending message

UI: OpenPGP > Preferences > Sending; Always confirm before sending
Off by default.

Treat '-- ' as signature separator

UI: OpenPGP > Preferences > Advanced; Treat '--' as signature separator
On by default.

Encrypt to self

UI: OpenPGP > Preferences > Sending; Encrypt to self
On by default.

Disable '<' and '>' around email addresses

UI: OpenPGP > Preferences > Advanced; Do not use '<' and '>' to specify email addresses (for Hushmail keys)
Off by default.

Debug log directory (if set, also enabled debugging)

UI: OpenPGP > Preferences > Debugging; Log directory
Off by default.

Enable encryption for replies to encrypted mails

UI: OpenPGP > Preferences > Advanced; Encrypt if replying to encrypted message
On by default.

Display all keys in the OpenPGP Key Manager

UI: OpenPGP > Key Management: if no text is entered in the search field, display all keys (true), or none (false)
false by default.

List of keyservers to use
user_pref("extensions.enigmail.keyserver","random.sks.keyserver.penguin.de, pgp.dtype.org, keyserver.kjsl.com, ldap://certserver.pgp.com");

UI: OpenPGP > Preferences > Basic; Keyserver(s)
Default string shown above.

Keep passphrase for ... minutes

UI: OpenPGP > Preferences > Basic; Remember passphrase for ... minutes of idle time
Default set to 5 minutes.

No passphrase for GnuPG key needed

UI: OpenPGP > Preferences > Basic; No passphrase for user
Off by default.

Selection of keys for unkown recipients

UI: OpenPGP > Preferences > Key Selection

Method to use for unknown keys:
1: by rules only
2: by rules & email addresses (default)
3: by email address only (no rules)
4: manually (always prompt, no rules)
5: no rules, no key manual selection

Use GnuPG's default comment for signed messages

UI: OpenPGP > Preferences > Advanced; Do not add Enigmail comment in OpenPGP signature
Off by default.

Use gpg passphrase agent for passphrase handling

UI: OpenPGP > Preferences > Advanced; Use gpg-agent for passphrase handling
Off by default.
Note: if GnuPG v2.0 or newer is used, then gpg-agent is mandatory and the option is ignored.

Wrap HTML messages before sending inline PGP messages

UI: OpenPGP > Preferences > Sending; Rewrap signed HTML text before sending
On by default

JS preferences

Countdown for alerts when composing inline PGP HTML messages

JS: This sets the number of times a warning message will be shown when composing HTML messages and attempting to send using Inline PGP.

Show warning message when clicking on sign icon

JS: Warns when changing signing by clicking on the sign icon in the bottom right hand corner of the compose pane.
On by default.

Handling of partially signed messages

JS: Display message at the top of the headers in the message reading pane if only part of the message is signed.
If you set this to false, PGP headers that appear within the message body will be ignored and displayed literally – except for those PGP headers at the beginning and the end of the message body when the whole message is signed (which is the normal case).
If this is set to true, Enigmail even removes preceeding quotes (">") from signed text embedded in the rest of the body if the message itself as a whole is not signed. This only works if the embedded quote has not been modified in the slightest way.
On by default.

Try to match secondary uid to from address

JS: When verifying signed messages, this option forces Enigmail to search secondary ID's on a keyring to find the matching ID for the email address used to send the message and display it instead of the default key ID.

Last state of dialog to choose encryption method if there are attachments

JS: Stores the value of the last encryption method used when sending an attachment to an encrypted message.

Allow encryption to newsgroupds

JS: Enables a warning dialog and/or sending of encrypted messages to newsgroups.

Enable 'Decrypt & open' for double click on attachment (if possible)

JS: Enables automatic decryption and opening of encrypted attachments with a double click.
On by default.

Countdown for 'failed to initialize enigmime'

JS: Sets the number of times a warning is displayed if Enigmime does not initialize.

Use -a for encrypting attachments for inline PGP

JS: Turns on ASCII Armor for attachments to inline PGP encrypted messages.
Off by default.

Extension to append for encrypting attachments for inline PGP

JS: Sets the extension to be used when creating attachments to inline PGP encrypted messages.

GnuPG hash algorithm

JS: Force GnuPG to use a specific hash algorithm (0: let GnuPG choose / 1: SHA1 / 2:RIPEMD160 / 3: SHA256 / 4: SHA384 / 5: sha512 6: SHA224)
0 by default.


JS: Due tue technical reasons it is not possible to use both PGP/MIME and S/MIME in one message. This option decides which standard to choose if both are activated (after OpenPGP rules were processed).
1 by default.

Parse all mime headers (do NOT change)

JS: Will force Enigmail to only parse the first set of MIME headers it finds in the message.
Will cause problems if disabled. For testing purposes only

Show quoted printable warning message (and remember selected state)

JS: Warns when Enigmail detects that a message is to be sent that contains 8 bit characters and that it will use Quoted Printable encoding.
Off by default.

Use http proxy settings as set in Mozilla/Thunderbird

JS: Use the HTTP Proxy settings defined in Mozilla/Thunderbird when retrieving keys from keyservers.
On by default

Show "save draft encrypted" message (and remember selected state)

JS: When saving a message that is to be sent encrypted as a draft, Enigmail checks if you would like to save the draft as an encrypted message.
On by default

Replacement of Mozilla's show all headers (because the original value is overriden)

JS: Both mail.show_headers and extensions.enigmail.show_headers control the viewing of the headers (normal=1 / all=2).
As Enigmail needs to see all headers, it sets mail.show_headers to 2 and stores the desired view in extensions.enigmail.show_headers.
The default is derived from the setting of mail.show_headers.
Depreciated: Thunderbird <= 2.x / SeaMonkey 1.x only.

Enable using gpgkeys_*

JS: Enables Enigmail to use the gpgkeys_hkp, gpgkeys_ldap, and gpgkeys_http to retrieve keys from keyservers without using gpg itself.

Warn if gpg-agent is found and remember passphrase for X minutes is active

JS: Shows a warning when closing the OpenPGP preferences if gpg-agent is used
On by default

Show "conflicting rules" message (and remember selected state)

JS: Shows a warning when sending a message to multiple addresses with Per-recipient rules that conflict with each other.
Off by default

Disable X-Enigmail-xxx headers

JS: If this is set to true, Enigmail adds custom mail headers to all outgoing mail. These headers are not currently used for any function, but may be used by a future Enigmail specific function.
Currently the headers added are:
    X-Enigmail-Version: 1.2.1
    X-Enigmail-Supports: pgp-inline, pgp-mime

On by default.

Default pref values for the Enigmail per-identity Account Settings

user_pref("mail.identity.default.pgpkeyId", "");
user_pref("mail.identity.default.pgpKeyMode", 0);
user_pref("mail.identity.default.pgpMimeMode", false);
user_pref("mail.identity.default.pgpSignPlain", false);
user_pref("mail.identity.default.pgpSignEncrypted", false);
user_pref("mail.identity.default.defaultEncryptionPolicy", 0);