<><><><><><><><
><><><><><><><>
<><><><><><><><
><><><><><><><>
<><><><><><><><
>
PGP-BASICS LIST MANUAL ~ (rev2004-10-17)
<><><><><><><><
><><><><><><><>
<><><><><><><><
><><><><><><><>
<><><><><><><><
>
Hello, and welcome again to PGP-Basics. This
"Manual" is a compilation of
PGP/GPG/Security related Web URL's, along with a listing of
currently
available MUA's (Mail User Agents) or Mail Clients, for both
the Windows,
MacIntosh and Linux Operating Systems. Individual Members of
PGP-Basics
have kindly provided a brief accounting of their experiences
with each
Mail Client listed, and more specifically, how PGP/GPG is
implemented in
that Program.
Please take the time to read through the Listings, and do
take advantage of
the URL's listed below, for they contain a wealth of
information not only
specific to PGP/GPG, but to Internet Security in general.
<><><><><><><><
><><><>
PGP RELATED LINKS
<><><><><><><><
><><><>
1. *PGP Tutorial for Beginners*
http://www.pi
tt.edu/~poole/PGPintro.htm
~ courtesy of Bernard John Poole
~ courtesy of Dr. Netiva Caftori
Extremely well written tutorials on both PGP 6.5.8 and PGP
7.0.3. It was
designed to be used with PGP classes at the University of
Northeastern
Illinois and University of Pittsburgh at Johnstown, PA.
2. PGP 101:
http://www
.privacyresources.org/pgp101.htm
(Excellent starting points before you install)
~ courtesy of Jacques Therrien
3. The International PGP Home Page:
http://www.pgpi.org/
Here you may download the latest releases of PGP Freeware
for your
platform and language, from a variety of International
sites.
4. MIT Distribution Centre for PGP:
http://web.mit.ed
u/network/pgp.html
Download the latest U.S. releases of PGP Freeware
5. PGP International Project - PGPi
http://www.
pgpi.org/doc/faq/pgpi/en/#What
http://www.pgpi.org
/pgpi/project/
This European Project allowed PGP to be legally distributed
around
the world by recompiling code published by the US PGP
effort. The
Project also allowed the porting of PGP to other platforms
and
languages. Provides interesting background, and recent facts
as well.
6. The Comp.Security.PGP FAQ
http://www.uk.p
gp.net/pgpnet/pgp-faq/
An excellent resource for all users of PGP, highly
recommended and one of
the most thorough presentations I have seen.
7. Tom McCune's PGP Page:
http://www.mccune.cc/PGP
.htm
http://www.mccune.c
c/PGPpage2.htm
Another excellent resource for all users.
8. Diceware Passphrase Home Page:
http://www.diceware.com
One of the best methods to create a passphrase for use with
PGP.
9. Common Problems in PGP Clear-Signing:
http://u
2.netgate.net/~jack/pgpcs_probs.html
An excellent presentation on some of the problems with
Clear-signing
messages, a term in which you will soon become familiar
with.
10. Public Key Servers
http://
www.pgpi.org/services/keys/keyservers/
http://www.keyserver.net
/en/
http://www.openpgp
.net/pgpsrv.html
http://www.hal-pc.org/~bunbytes/karlsson/pgp/index.html
An extensive grouping of world-wide Public Key Servers.
11. FAQ - RSA vs DH/DSS Keys:
http://www
.scramdisk.clara.net/pgpfaq.html
For much later: a rather technical discussion, but
nonetheless one of the
best documents found on the subject of PGP.
12. PGP Documentation:
http://www.pgpi.org/doc/
An overview of PGP's supporting documentation.
http://www.pgpi.org
/doc/pgpintro/
An excellent introduction to PGP.
13. PGP/MIME vs S/MIME
http://www.imc.
org/smime-pgpmime.html
14. Using PGP with Eudora
http://charlotte.at.northwestern.edu/julian/pgpeudora/
An excellent page detailing some of the problems encountered
using PGP 7.0
with the latest versions of Eudora Mail.
15. PGP Interactions Page
~ Courtesy of RJ Marquette
http://rmarq.pai
r.com/pgp/index.html
A truly International page with extensive and excellent
coverage of version
interactions between PGP and a host of Mail Clients.
16. Imad's PGP Home Page
http://www.ipgpp.com/
An excellent reference site for PGP and home to the CKT
Builds of PGP.
Latest release is PGP 6.5.8ckt Build 08.
17. GnuPG/PGP and TB! Plugin Support Page
~ Courtesy of Allie Martin
http://www.
landscreek.net/gpg_pgp_tb.html
Another excellent reference site for those Members who are
using the Mail
Client TB! from RITLabs and want to use either of TB's
Plugin support for
GnuPG and/or PGP.
18. The excellent newsletter CRYPTO-GRAM by Bruce Schneier
http://www.counterpane.co
m. Its contents may seem to go beyond the
"basics" at times, but there is much to read in it
and we highly recommend it.
19. GnuPG for Mac OS X users.
Excellent information, HOWTOs, tutorials, GUIs can be found
at:
http://macgpg.sourcefo
rge.net/
Mac OS X has changed the way Mac users work and think. With
all due
respect to Mac OS Classic (version 9.2.2 is the Last of the
Mohicans -
or is it Mohegans?), Mac OS X with its Unix foundations is
eons beyond
its venerable and respected ancestor.
20. Installing GnuPG on Windows 95/98/2K
We have constructed a number of Files that will provide
detailed
instructions for installing GnuPG on any of the Operating
Systems
mentioned above.
Download the precompiled binary for Windows:
gnupg-w32-1.0.6-nullify.zip
http://www.nullify.org/
Download GPGShell which is a Windows Front-end for GPG.
http://www.
jumaros.de/rsoft/download.html
Download either of the following Archives that apply:
"GnuPG - Win98 Installation Help" ZIP Archive.
"GnuPG - Win2K & Win XP Installation Help" ZIP
Archive.
From the Files area of our Web Site:
http:
//groups.yahoo.com/group/PGP-Basics/files/
21. The Enigmail folk have put up an excellent page on
"GnuPG Installation
and Configuration on Windows" at:
<http://en
igmail.mozdev.org/gpgconf.html>
There is a wealth of information presented in all of the
above links,
so please take the time to read them before you install PGP.
............................................................
..............
<><><><><><><><
><><><><><><><>
<><><><>
MAIL CLIENTS AND PGP INTEGRATION
<><><><><><><><
><><><><><><><>
<><><><>
Below is a list of Mail Clients that are presently in use on
PGP-Basics,
and I have included various User commentaries to describe
the PGP
integration of each Client. Over time, I will endeavour to
keep this list
as up to date and as I can, and you can submit any
additional comments you
would like to see added, directly to:
PGP-Basics-owner@yahoogroups.com
Becky! Internet Mail Version 2.11.02
http://www.rimarts.co.jp/
~ submitted by Graham Todd
Version 2.0 of Becky is a feature rich MUA which also has
the ability to
accept many third party Plugins, including a Newsreader. The
"official"
PGP Plug-in only works with the Commandline version of PGP,
and as such is
best ignored. An alternative is the PGPB2 Plug-in, which
integrates well
with NAI's GUI, and supports PGP/MIME to RFC2015. At
present, version 2
supports PGP versions up to and including 6.5.8.
Becky 2! has adopted the use of Plug-ins which dramatically
extend it's
capabilities. One such Plug-in is for GnuPG, and if one runs
GnuPGShell (a
Windows front end for GnuPG) as well, full access to GnuPG,
including
Keyserver access, can be integrated with Becky!2. This
Plug-in is fully
PGP/MIME compliant to the Internet standard RFC2015.
In summary, Becky!2 is a fine MUA, with virtually full PGP
integration up
to PGP 8.0.3, and excellent handling of GnuPG.
Calypso E-Mail Client 3.30
~ submitted by Peter Pauwels
http://10xshoote
rs.com/calypso-free/
I like to use the Calypso E-Mail Client because it is very
convenient for
people on the move and/or people that use loads of different
computers to
read their mail. The special thing about Calypso is that it
uses ONE file to
store your mailbox and settings. This means that you can
take your complete
mailbox with you on a floppy. In order to use the file, the
PC you are using
must have the Calypso executable on it. The calypso client
has a PGP Plug-in
that is very handy to use  So I would
classify this client under extreme
mobility of mailbox.
Eudora Version 6.1.1 for Macintosh
~ submitted by Shalom Avital
http://www.eudora.com/
An extraordinary integration with PGP, due to the Eudora PGP
Plug-in. All
relevant PGP commands (Add keys, sign, encrypt,
encrypt/sign,
decrypt/verify, open PGP Preferences panel, in Windows
parlance, the
"Options" panel) from within Eudora, through menu
commands, and/or keyboard
shortcuts. Eudora is PGP/MIME compliant. Again, this is not
an advantage
when corresponding with e-mail clients which are not
PGP/MIME compliant, but
it offers an excellent solution for clear-signed messages
which contain
special characters (accents, etc.) that can upset PGP
signature and make it
verify "bad".
Eudora Version 6.1.2 for Windows
~ submitted by Nick Andriash/Admiral Cyclops
http://www.eudora.com/
I have used Eudora for well over 5 years, and version 6.1.2
is one of the
best that Qualcomm has put out. It has full support for
PGP/MIME, and what a
wonderful feature that is. Eudora 6.1.2 has seamless
integration with
the latest versions of PGP (8.0.3): Eudora's PGP Plugin is
included
with all PGP installations, and the interface for the Plugin
includes
buttons on the send-mail window and on the main tool bar to
access PGPKeys
and Decryption/Verification operations. I would rate Eudora
as one of the
better Clients on the market today.
Microsoft Outlook 2002
~ submitted by Nick Andriash
h
ttp://www.microsoft.com/office/outlook/default.htm
I have used Outlook 98, 2000, 2002 and Outlook 2003, and in
all versions, MS
Outlook offers seamless integration with the latest versions
of PGP through
one of the best PGP Plugins I have ever used. Although
Outlook supports
S/MIME, it does not support PGP/MIME at present, and I am
not aware of any
such plans for future support of PGP/MIME, which is truly
unfortunate.
Musashi International E-Mail Client 3.4.1 (Macintosh only)
~ submitted by Shalom Avital
http://www.sonos
oft.com/musashi.html
Musashi's integration with PGP is obtained through PGP's
feature "PGP
Menu", in PGP's Preferences panel. This is a feature
which allows a User
to "register" a specific application (through the
navigation system), so
that a PGP icon (the padlock) will show in the application's
menu bar.
Clicking this icon will deploy a pop-down menu, with the
following
commands (backed up by keyboard shortcuts): encrypt, sign,
encrypt and
sign, decrypt/verify, clear passphrase cache, open PGPKeys,
open PGPTools,
open PGPNet.
By the way, this PGP Menu feature (Mac) allows integration
with
applications for which there is no PGP plug-in (Netscape,
BBEdit,
Simple Text, and others). It works usually very well, but
requires to
increase somewhat the memory partition of the
"registered"
application. Not unexpectedly, it doesn't work very well
with MS Word
98.
Netscape 7.0
~ submitted by Sam Stern
http://channels.netscape.com/ns/browsers/default.jsp
UPDATE: PGP Plugin for Netscape Messenger
v1.2.0
http://bear-sof
tware.freeservers.com/
This PGP Plugin for Netscape Messenger is a fairly
comprehensive,
full-function application of PGP for use within the Netscape
E-mail
facility. With this Plugin you can conveniently encrypt,
sign, and decrypt
messages by clicking button or menu items while in Netscape.
Alternatively, all outgoing or incoming messages can be
automatically
encrypted, signed, or decrypted by selecting PGP options.
The Netscape PGP Plugin is Freeware.
Pegasus Mail for Win32 (v4.21c)
~ submitted by Sam Stern
http://www.pmail.c
om/downloads.htm
Pegasus with QDPGP and QDGnuPG Plugins from the following:
http://commun
ity.wow.net/grt/qdgpg.html
Excellent PGP and GnuPG integration but the learning curve
can be so steep that I cannot discount that formidable
negative).
Otherwise I would place it with TB! above OE/Outlook.
The Bat (TB!) by RITLabs Version 2.0
http://www.ritlabs.co
m/the_bat/
~ submitted by Marck Pearlstone
TB! supports many versions of PGP including an internal
version
which doesn't even need an external installation of PGP.
This
internal implementation is restricted in that it only
supports RSA
keys. TB! v2 has built-in support for the PGP 2.6.3
executable, and
for PGP v5.x, v6.0.x, v6.5.x, v7.x and v8.x. It also boasts
seamless
S/MIME (x509) certificate support. TB! uses the PGP Log for
signature verification using PGP, and incorporates the
following
method of signature verification for GPG:
gpg: Signature made 12/20/03 20:30:38 GMT Standard Time
using DSA key ID 3BCA7DD2
gpg: Good signature from "Nick Andriash
<andriash shaw.ca>"
which appears in a pop-up window.
TB! offers support for GPG, allowing one to use almost all
the
functions of GPG through a standard menu. You must have
GnuPG
properly installed on your Computer, for there is no
internal
version of GPG included with TB!
TB! handles text flow perfectly so PGP's and GPG's wrap
functions
can be dispensed with. TB! offers full access to PGP
preferences and
the PGP key manager as if they were built in, although not
for GPG
since these are only available as 3rd party utilities (Such
as WinPT
and GPGShell). Encryption and signing are configurable as
automatic
when replying and when sending messages for both PGP and
GPG.
Version 2.0 additionally offers full PGP/MIME support,
attachment
signing / encryption / decryption, with seamless /
integrated
decryption and signature checking.
TB! also possesses many control macros to enable and disable
signing, encryption and PGP/MIME features from within
specific
templates. Templates can be assigned per account, per
folder, per
address book group and per address book entry as well as
invoked in
real-time using Quick Templates. The level of automated
control is
nothing short of exquisite.
SecureBat! by RITLabs v2.12.3/iKey1000
http://www.ritlabs.
com/securebat/
~submitted by Nick Andriash
SecureBat! is an E-Mail Client which offers all of the major
features of
The Bat! plus secure authentication on POP3/SMTP servers
using hardware
tokens and transparent, on-the-fly encryption of the e-mail
message base,
address books and configuration files. This makes the
sensitive data
stored on your mobile and desktop computers really secure!
THUNDERBIRD with ENIGMAIL
http://mozill
a.org/products/thunderbird
~ submitted by Robert J. Hansen
In 1998 Netscape Communications opened the source to their
Netscape web
browser and email client, and invited the world to help them
build the
next generation of these products. This ongoing project,
which can be
seen in Netscape 7 and everything since, is collectively
called Mozilla.
~ Currently at version 1.5, the Mozilla Project has released
technology
previews of what Mozilla 2 will be like. The email preview
is called
"Thunderbird", and is in version 0.4 as of this
writing.
Strong crypto support is available in Thunderbird as a
plugin called
Enigmail. While setting up Thunderbird and Enigmail require
some
computer skill, the effort is worth it. Once set up,
there's a
convenient button in each mail window labeled
"OpenPGP" which allows for
quick access to cryptographic features.
Thunderbird is still very much a work in progress and is not
ready for
average home use. It also lacks many features that are
common to other
email programs, such as virtual folders, comprehensive
contact
management systems, schedules, calendaring and other
groupware tools.
However, if you just need an email client and not those
other tools,
Thunderbird is a very defensible choice.
Thunderbird supports RFC2440 and RFC3156 ("inline
PGP" and "PGP/MIME"),
RFC2646 flowed text, and preliminary support for
cryptographically-signed HTML email.
Enigmail also exists for Netscape 7. If you're using a
Netscape
7-series browser, just go grab Enigmail and you're off and
running.
Enigmail: http://enigmail.mozdev.org
Netscape 7: http://channels.netscape.com/ns/browsers/download.jsp
LINUX O/S MAIL CLIENTS
http://devel-home.k
de.org/~kmail/
http://xfmail.slappy.org/
http://www.mutt.org/
http://sylpheed.good-da
y.net/
~ submitted by Brian Galbraith
Linux usage is increasing, and the Distributions are
becoming more user
friendly, so sometime you may want to try it out...at least
you won't have
the virus problems we have all been talking about. I use my
system for work,
so the Mail Programs I use are effective and simple to use.
I currently use
Mutt, but I have used XFMail and KMail. As with most things
Linux, these
Programs are being developed at a fast pace. It is not
unusual therefore to
see at least three releases per year. All are open source
and free.
The Linux Mail Programs are built to execute command-lines
in either PGP
or GnuPG.
1) Kmail was the first Program I used with Linux. It is
supplied as a binary
with most Linux Distributions.(i.e. the Linux equivalent of
a Windows .exe
file).The Program has limited HTML support, and is similar
in appearance to
Eudora or Outlook Express. The Program can be set up for a
single user with
multiple accounts. PGP support is integrated well. The
Program automatically
verifies a signature as soon as the message is opened, and
if the message is
encrypted, you are immediately asked for your passphrase.
This can be stored
in the cache for subsequent use without prompting. Messages
are signed
and/or encrypted by clicking on buttons in the compose
window, similar to
Eudora and Outlook Express. This Program is very easy to
use.
The latest stable version of KMail (3.2.3) features:
- Support for multiple (nested) mail folders
- Support for mail filters
- Search dialogue
- Support for reading HTML mails
- Editor supports spell checking, undo/redo
- Threaded messages view
- Address book
- Multiple identities
- Colourfied indenting (i.e. text that's quoted has a
different colour)
- Background downloading of mail
- Support for GNU Privacy Guard 1.0 and PGP 6.x
- KDE 2.0 integration such as drag and drop
- Better support for custom colours and fonts
- Mail bouncing capability (anti-spam)
- Works (again) on Alpha architecture
- Elimination of several bugs
Screen shots can be found at:
htt
p://devel-home.kde.org/~kmail/screenshots.html
2) XFmail is a very powerful Mail Program. It supports
multiple IDs and
multiple accounts. PGP support is built in, with more
flexibility than
KMail. Unlike Kmail however, encrypted messages are
displayed as ciphertext.
You must click on a PGP menu to obtain
verification/encryption/decryption.
PGP/MIME is an option. Current Programs supported are PGP
2.6.x , 5.0, 6.5
and GnuPG. . HTML messages are not supported. Set up is a
little more
involved than with KMail. Current version is 1.5.5 and can
be found at:
http://xfmail.slappy.org/
Links to screen shots are also available on the same page:
http://xfmail.slappy.org/
3) Mutt is an extremely powerful text only Mail Client, and
not for the faint
hearted, Thankfully, lots of friendly people and
configuration files exist,
which help with the initial setup. It is different from the
others..in that
it reads, composes, and sorts mail. Separate Programs must
be set up to
"fetch", and "Sendmail". While not
necessary,..another Program can be used
to filter, and deliver to individual mailboxes. I am a new
user, but so far
I am extremely impressed. In the past I have used Mail
Clients which have
been good.... but there was always something "not quite
right". I learned to
live with it, but not so with Mutt. With a bit of guidance,
it can do almost
anything. One word of caution..... in-built PGP/GnuPG
support is for
PGP/MIME. To post to PGP-Basics you would be advised to use
a PGP front-end
to sign traditionally, as many Windows Mail Clients do not
follow RFC2015
exactly as they should.
Some of Mutt's features include:
- Colour support
- Message threading
- MIME support (including RFC2047 support for encoded
headers)
- PGP/MIME (RFC2015)
- Various features to support mailing lists, including
list-reply
- Active development community
- POP3 support
- IMAP support
- Full control of message headers when composing
- Support for multiple mailbox formats (mbox, MMDF, MH,
maildir)
- Highly customisable, including keybindings and macros
- Change configuration automatically based on recipients,
current
folder, etc.
- Searches using regular expressions, including an internal
pattern matching
language
- Delivery Status Notification (DSN) support
- Postpone message composition indefinitely for later recall
- Easily include attachments when composing, even from the
command line
- Ability to specify alternate addresses for recognition of
mail forwarded
from other accounts, with ability to set the From: headers
on replies
etc. accordingly
- Multiple message tagging
- Reply to or forward multiple messages at once
- ".mailrc" style configuration files
- Easy to install (uses GNU autoconf)
- Compiles against either curses/ncurses or S-lang
- Translation into at least 20 languages
- Small and efficient
- It's free! (no cost and GPL'ed)
http://www.mutt.org/
http://www.mutt.org/
screenshots/
4) Sylpheed is a very interesting mailer...still very young
in
development. However this development is moving forward at a
very fast
pace. The current version supports encryption using GnuPG,
and using the
PGP/MIME format.Currently PGP signing is not available,
although this
should soon be present.The layout is similar to that of
Becky!,and the
program also doubles as a News reader. Interestingly....the
GnuPG
developers are working at this program, and have produced an
alpha version
which will run on Windows2K. Work is in progress to extend
this to the
Windows95/98/ME family:
- Currently implemented features are:
- Unlimited multiple account handling
- Thread display
- Filtering
- MIME (attachments)
- built-in image view
- X-Face support
- External editor support
- Message queuing
- Draft message function
- Line-wrapping
- Clickable URI
- XML-based Address Book
- Newly arrived and unread message management
- Multiple MH folder support [New!]
- Mew/Wanderlust compatible key bindings
- News reader function [Updated!]
- Printing
- UIDL support
- APOP authentication
- IPv6 support
- Autoconf, automake support
- Support of i18n of messages by gettext
- Supports many locales, including UTF-8 (Unicode),
when using libjconv
http://sylpheed.good-da
y.net/
I have used two PGP Frontends for traditional signing, and
key management.
These provide much the same functionality as the PGP Tray
1)KGPG
kgpg is a simple, free, open source KDE frontend for gpg.
http://dev
el-home.kde.org/~kgpg/index.html
- Editor mode enables you to type/paste a text and
encrypt/decrypt/sign/verify it
- Key manager: import, export, delete, sign, generate and
edit keys.
- Integration with konqueror (1): left click on a file to
decrypt/verify it.
- Integration with konqueror (2): right click on a file to
encrypt/sign it.
- Encryption: support for symetric encryption. Multiple keys
& default key encryption. Optional shredding of source
files
- Signatures: creation & verification of detached &
cleartext signatures
- Drag & drop encryption + clipboard en/decryption
Geheimnis is no longer being supported
http:/
/geheimnis.sourceforge.net/screens.phtml
2)Seahorse
Current version is 0.6.2
This front end supports GnuPG only.
Built in editor
KeyServer compatible
http://seahorse.sour
ceforge.net/
<><><><><><><><
><><><><><><><>
<><><><><><><><
><><><><><><><>
<><><><><><><><
>
____________________________________________________________
__
Archives: htt
p://groups.yahoo.com/group/PGP-Basics/messages
OT List: http://gr
oups.yahoo.com/group/PGP-Basics-OT
OT Subscribe:
mailto:PGP-Basics-OT-subscribe@yahoogroups.com
Yahoo! Groups Links
<*> To visit your group on the web, go to:
http://grou
ps.yahoo.com/group/PGP-Basics/
<*> To unsubscribe from this group, send an email to:
PGP-Basics-unsubscribe@yahoogroups.com
<*> Your use of Yahoo! Groups is subject to:
http://docs.yahoo.c
om/info/terms/
|