> For security its recommended to compose messages outside the e-mail > client. Composing email outside the client is only possible if you use PGP/inline, which is also weak (no clear protection boundary & message tampering). https://dkg.fifthhorseman.net/notes/inline-pgp-harmful/ And you can’t attach file on this mail format, or you leak file names and sizes if you encrypt your attachments outside the client too. No way to send HTML mail too (even if it’s very bad :P). So I don’t know what is the more secured between PGP/inline outside the client or PGP/MIME inside… For plain text and very simple email, surely the first, but in most cases, undecidable and for common emails (with attachments and multipart text/html) certainly the second… Regards, -- Aeris Individual crypto-terrorist group self-radicalized on the digital Internet https://imirhil.fr/ Protect your privacy, encrypt your communications GPG : EFB74277 ECE4E222 OTR : 5769616D 2D3DAC72 https://café-vie-privée.fr/
Attachment:
signature.asc
Description: This is a digitally signed message part.
-- tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk