mirror of
https://github.com/moparisthebest/gpgit
synced 2024-11-15 21:45:03 -05:00
Add note about PGP limitations on email metadata
This commit is contained in:
parent
a5816ef60e
commit
44898ea376
@ -9,6 +9,8 @@ Why
|
||||
---
|
||||
It partially solves the problem that no one wants to use [PGP] encryption. The email is still in the clear while in transit, but it gets encrypted before it touches your mail server's hard drive. That means mail is still vulnerable to network capture (unless [TLS] is used) and to logging on the intermediate [SMTP] servers, but not vulnerable to [authorities randomly seizing your server][Riseup server seizure], [National Security Letters][National Security Letter] [on your email provider][Jacob Appelbaum email seizure], or other crazy stuff like that.
|
||||
|
||||
Note that PGP does not encrypt email headers. This includes the *To/From/CC* fields, the *subject line*, the date, and possibly other metadata such as the sender's IP address and the name of his/her email client. This metadata alone can say a lot about you, who you talk to, how much, how frequently, and even the topic of the conversations since the subject line is not encrypted. Automated email from websites also give out information such as the websites you visit, what you do on them (guessable from the subject line), how active you are on them (more email volume from an entity generally means you interact more actively with it), etc. Under US jurisdiction, this information [can be obtained][Foreign Intelligence Surveillance Act of 1978 Amendments Act of 2008] [without a warrant][Smith v. Maryland] (and it probably [has already been obtained][Democracy Now - The government has a copy of most of your emails]), *without* the service provider having to tell you about it.
|
||||
|
||||
How
|
||||
---
|
||||
`gpgit` simply reads an email from stdin, encrypts it with the key given as first argument (unless the email is already encrypted), and writes out the result to stdout. That's almost all there is to it; some other arguments are available. Run `gpgit` without arguments for details.
|
||||
@ -41,6 +43,9 @@ Who
|
||||
[Riseup server seizure]: https://www.eff.org/deeplinks/2012/04/may-firstriseup-server-seizure-fbi-overreaches-yet-again
|
||||
[National security letter]: https://en.wikipedia.org/wiki/National_security_letter
|
||||
[Jacob Appelbaum email seizure]: http://online.wsj.com/article/SB10001424052970203476804576613284007315072.html
|
||||
[Smith v. Maryland]: https://en.wikipedia.org/wiki/Smith_v._Maryland
|
||||
[Foreign Intelligence Surveillance Act of 1978 Amendments Act of 2008]: https://en.wikipedia.org/wiki/Foreign_Intelligence_Surveillance_Act_of_1978_Amendments_Act_of_2008
|
||||
[Democracy Now - The government has a copy of most of your emails]: http://www.democracynow.org/2012/4/20/whistleblower_the_nsa_is_lying_us
|
||||
[MIME:Tools]: http://search.cpan.org/perldoc?MIME%3A%3ATools
|
||||
[Mail::GnuPG]: http://search.cpan.org/perldoc?Mail%3A%3AGnuPG
|
||||
[Exim]: http://www.exim.org/
|
||||
|
Loading…
Reference in New Issue
Block a user