Allow or Always Use PGP/MIME?

Forum for misc bugs and other questions. If it doesn't seem to work properly or if you have any questions, post them here. Do not post questions regarding nightly builds here.

Allow or Always Use PGP/MIME?

Postby gormenghast » 15th Apr 2006 14:12

Having trouble with the sending email that converts into an attachment on the inbox.

Please see screenshots. [url=http://upload3.postimage.org/107783/photo_hosting.html][img]http://upload3.postimage.org/107783/AllowtousePGP_MINE.jpg[/img][/url]

When its set to "Allow PGP/MIME" it looks okay.
[url=http://upload3.postimage.org/107791/photo_hosting.html][img]http://upload3.postimage.org/107791/AllowtousePGP_MINE_email.jpg[/img][/url]


But when I set it to Always use PGP/MIME:

[url=http://upload3.postimage.org/107810/photo_hosting.html][img]http://upload3.postimage.org/107810/AlwaysUsePGP_MINE.jpg[/img][/url]

It looks like this:

[url=http://upload3.postimage.org/107815/photo_hosting.html][img]http://upload3.postimage.org/107815/AlwaysUsePGP_MINE_email.jpg[/img][/url]

Why has it become an attachment? I don't quite understand the use of MIME. Is it only useful for people receiving email on their email client?

Please advise. Thank you.
gormenghast
New user
New user
 
Posts: 3
Joined: 14th Apr 2006 12:45

Postby patrick » 15th Apr 2006 16:49

PGP/MIME is not properly supported by all mail applications. In case an application does not recognize the MIME type correctly, it just assumes that the MIME part is an attachment. The only workaround if this happens is to use inline PGP (and that's the only reason why Enigmail support inline PGP).
User avatar
patrick
Developer
Developer
 
Posts: 517
Joined: 13th Nov 2005 22:16
Location: Zurich, Switzerland

Postby Lusfert » 16th Apr 2006 00:00

patrick wrote:PGP/MIME is not properly supported by all mail applications. In case an application does not recognize the MIME type correctly, it just assumes that the MIME part is an attachment. The only workaround if this happens is to use inline PGP (and that's the only reason why Enigmail support inline PGP).

People who use web-interface (even Gmail) also will be unable to work with PGP/MIME messages. But they will be able to use Inline PGP via clipboard or current window.
Lusfert
Average User
Average User
 
Posts: 21
Joined: 5th Dec 2005 15:02
Location: Russia

Postby gormenghast » 23rd Apr 2006 04:57

Thanks for the replies.

But I don't quite understand what they meant. Bear with me, but could anyone advise on what I should do to avoid having content of my emails becoming attachments in the emails I sent out?

Does it also depend on whether the recipients have an email client or web-based email like yahoo or gmail?

Thanks!
gormenghast
New user
New user
 
Posts: 3
Joined: 14th Apr 2006 12:45

Postby Adam » 23rd Apr 2006 14:31

gormenghast wrote:could anyone advise on what I should do to avoid having content of my emails becoming attachments in the emails I sent out?

If you send signed email to a user that has Outlook or Outlook Express, when you use PGP/MIME, the email will appear as a blank email with two attachments - your html message and a signature (.asc) file. This is a limitation of Oultook and Outlook Express rather than OpenPGP and Enigmail. If you sign a message using inline PGP (ie. Do not use PGP/MIME) then the email will appear as a text email correctly, however if your recepient does not use OpenPGP or PGP software, they will see a lot of scrambled text inline - this is the OpenPGP inline text code.

I would suggest that you use email signing only if the recepient has the software to recognise it, or if they do not use Outlook or Outlook Express. Probably the least invasive way to do this is to use PGP/MIME.

gormenghast wrote:Does it also depend on whether the recipients have an email client or web-based email like yahoo or gmail?

If you are just signing your email, it doesn't matter if the person is using webmail or not - they will still be able to read the main content of the message whether you use PGP/MIME or not. However, they will not be able to verify your signature if you use PGP/MIME. If they use a program such as WinPT, they would be able to verify your signature by copying and pasting an inline PGP message to the program, but it is probably unlikely that people with Webmail would use email signing and encryption very frequently.

In my opinion, it is best to sign your emails using PGP/MIME if your recepients have webmail accounts.

If you are encrypting your email rather than just signing all your outgoing email then you should use inline PGP (do not use PGP/MIME) since it is the most universally compatible method for your email. However, I suspect that you are simply signing all your outgoing mail, and I think the best way to do this is to use PGP/MIME. However, it is not compatible with Outlook and Outlook Express mail clients, so you should consider setting up per-recepient rules to not sign outgoing mail to recepients you know that use these mail client programs.

Does this help you?
Mozilla Thunderbird 2.0, Enigmail 0.95.5, GnuPG 1.4.8-MobilityEmail
OpenPGP Key ID 0x37858A47
Adam
Experienced user
Experienced user
 
Posts: 119
Joined: 5th Dec 2005 17:34

Postby adrianmarsh » 23rd Apr 2006 18:25

Anyone know if theres a list of which Clients do/dont support PGP/MIME correctly?

I started using this instead of Inline PGP because I wanted to encrypt attachments. It'd be useful to know which apps do/dont support either 100%. Maybe we could start a Poll ?
adrianmarsh
Novice User
Novice User
 
Posts: 14
Joined: 2nd Jan 2006 15:54

Postby barry » 23rd Apr 2006 18:51

A quick Google revealed this list: http://www.bretschneidernet.de/tips/secmua.html

Maybe there are other such lists but this one seems to be pretty extensive...

--
Regards
Barry
User avatar
barry
Enigmail Team
Enigmail Team
 
Posts: 91
Joined: 12th Nov 2005 19:25
Location: Croydon, Surrey, UK

Postby gormenghast » 24th Apr 2006 12:50

Thanks for the replies. I think it helps. Although I think I'll need to read it a few more times.

Let me try doing test emails again. Even though not every one I email uses encryption, but I think I should at least sign the email so that they know its me. In a way, it will encourage people to use encryption in their email.

Not familar with WinPT. I think one step at a time. Will try to understand how to use Enigmail first.

Thanks alot!
gormenghast
New user
New user
 
Posts: 3
Joined: 14th Apr 2006 12:45


Return to General Discussions