pgp guide - bitcoin · pdf filepgp guide this guide has been created to help you get pgp set...
TRANSCRIPT
![Page 1: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/1.jpg)
PGPGUIDEThisguidehasbeencreatedtohelpyougetPGPsetuponyourlaptopordesktopcomputer.
Thunderbirdis,inmyopinion,theeasiestandthebestwaytohandlePGPencryptedemailsonbothAppleOS’sandWindowsOS’s.Withthatinmind,thisguidewillcenteronusingThunderbirdtohandleyourpersonal / workemails,andusingaThunderbirdextensioncalledEnigmailtohandleyourPGPencryption.
Pleasenotethat“PGP”(whichstandsforPrettyGoodPrivacy)and“GPG”(GNUPrivacyGuard) canbeused interchangeably.Theybothessentially refer to thesamethingwithinthescopeofthisguide.
ThisguidedoesnotcoverPGPonmobiledevices,andIwillnotbecreatingaguideformobiledevicesatthistime.AllowingyourPGPprivatekeyontoyourmobiledeviceisaverybadidea,especiallyifyoudonotuseaverystrongpassphrasetoprotectyourprivatekey.Peopleoftenstoretheirpasswordsontheirphoneortabletandthesedevicesareoftenlost,stolenorperhapsevenseizedbytheauthorities.
Ifapersonhasaccesstoyourprivatekeyandpasswordtheycandecryptallencryptedemailsthataresenttoyou.AnevenbiggerriskarisingfromthisistheabilityofsomebodywithaccesstoyourprivatekeyandpassphrasetoPGP-signamessagewithyourPGPPrivateKeyenablingthatpersontopretendveryconvincinglythattheyareyou.
Youcansetupyourpersonal / workemailaccountonyourphonelikeanyregularGmailaccountifyouwishinordertoreceivenotificationsofnewemails,ortowriteandrespondtounencryptedemails.However,youwillonlybeabletodecryptandencryptemailsonyourcomputerusingThunderbirdwithEnigmail.
![Page 2: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/2.jpg)
WindowsUsers:
Step1:DownloadThunderbirdfromthefollowinglink:https://www.mozilla.org/en-US/thunderbird/
Step2:DoubleclicktheThunderbirdSetup45.7.0filethatyoudownloadedandinstallThunderbird.
Step3:LaunchThunderbird.Ifyouseea‘SystemIntegration’pop-upfeelfreetoclick‘Skipintegration’ifyoudonotunderstandanyoftheoptionsyoucanchoose.
Step4:Youwillseethe‘WelcometoThunderbird’screenaskingyouifyouwanttocreateanewemailaddress:
Click‘Skipthisandusemyexistingemail’.
Step5:Onthe‘MailAccountSetup’screen,enteryourname,your‘personal / work’emailaddressandyourpasswordintherequiredfields.IwouldrecommendallowingThunderbirdtostoreyourpassword;otherwiseyouwillneedtoenteriteverytimeyouopenThunderbird.Onceyouhaveenteredallrequiredfields,clickthe‘Continue’button.DependingonyourpreferenceyoucaneitherselectIMAPorPOP3.ThedifferencebetweentheseisthatIMAPdoesnotstoretheemailsfromyouraccountonyourcomputer,whereasPOP3doesstoretheemailsfromyouraccountonyourcomputer.IMAPisthedefaultselectionandshouldbesufficientformostpeople.Click‘Done’.
![Page 3: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/3.jpg)
Step6:Clicking‘Done’willbringyoutoyourGoogleloginpage.Hereyouwillneedtoenteryouremailaccountlogincredentialsasnormal–youremailaddress,passwordandtwo-factorauthentication(ifalreadysetuponyouraccount).
Afterenteringyourlogincredentialsclicktheblue‘Allow’buttontoallowThunderbirdtoviewandmanageyourmail:
Thunderbirdwillnowbegintosynctheemailsfromyour‘personal / work’accountandtheywillappearwhenyouclickthe‘Inbox’folderontheleft.
Step7:Pressthe‘alt’keyonyourkeyboardtoshowthe‘File’,‘Edit’,‘View’,etc.menusatthetopofyourscreen.Click‘Tools’,then‘AccountSettings’.ThiswillbringuptheAccountSettingsmenu:
![Page 4: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/4.jpg)
Click‘ServerSettings’inthemenuontheleft,andinthe‘ServerSettings’sectionchangethe‘Checkfornewmessagesevery’numberto‘3’minutes.ThiswillensurethatThunderbirdwillcheckforanddownloadanynewemailsevery3minutes.Donotchangeanyothersettingsinthissection.Click‘OK’.IfyougetawarningaboutJunkMailfolders,justclick‘OK’,andclick‘OK’againontheJunkMailscreenthatappears.YouarenowfinishedsettingupThunderbird!NextwewillsetupEnigmail:Step8:Pressthe‘alt’keyonyourkeyboardagaintoshowthe‘File’,‘Edit’,‘View’,etc.menusatthetopofyourscreen.Click‘Tools’,then‘Add-ons’.Thiswilltakeyoutothe‘Add-onsManager’screen.Step9:Type“Enigmail”intothesearchbarinthetoprightcornerandclickthemagnifyingglasstosearch:
Clickthe‘Install’buttononthefirstresultthatcomesup,titled‘Enigmail’:
Onceithasfinisheddownloadingclicktheblue‘Restartnow’link.ThiswillrestartThunderbirdandinstallEnigmail,openingthe‘EnigmailSetupWizard’automatically.Youwillmostlikelyseethefollowingalert:
![Page 5: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/5.jpg)
Step10:Clickthe‘SetupWizard’button,ensure‘Startsetupnow’isselectedthenclick‘Next’.Ensure‘Ipreferastandardconfiguration(recommendedforbeginners)’isselectedandclick‘Next’.Clickthe‘InstallGnuPG’buttonanditwillbegindownloadingGnuPG.DependingonthespeedofyourInternetconnectionthiscantakeafewminutes.Onceitiscompleted,click‘Next’.(IfdownloadingGnuPGstallsorfails,clickthe‘Cancel’button.Thenpressthe‘alt’keyonyourkeyboard,click‘Enigmail’inthemenuatthetopofthescreenandclick‘Setupwizard’thenstartStep10again.)InstallGpg4win.Onthe‘ChooseComponents’screen,select‘GPA’and‘GpgEX’,thenclick‘Next’.Click‘Next’allthewayuntilyouseethe‘Install’button,thenclick‘Install’.Onceinstallationhascompleted,click‘Next’againand‘Finish’.ThiswilltakeyoubacktotheEnigmailSetupWizard:
![Page 6: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/6.jpg)
Clickthe‘Next’button,andthiswilltakeyoutothe‘CreateKey’window:
Step11:
Hereyouwillneedtosetastrongpassphrase.Thispassphrasewillbeusedtoprotectyourprivatekey,anditishighlyrecommendedthatyoupickaphrasecontainingatleast8characters,digitsandpunctuationmarksatminimum–a16–24characterpassphrasewouldbepreferable.DONOTFORGETTHISPASSPHRASE.Withoutityouwillbeunabletodecryptemailsthatareencryptedtoyourpublickey.
![Page 7: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/7.jpg)
Onceyouhaveenteredyourdesiredpassphrase(andwrittenitdownsomewheresafe)clickthe‘Next’button.Step12:Onceyourkeyhasbeencreatedyouwillneedtocreatearevocationcertificate.Clickthe‘CreateRevocationCertificate’buttonandyouwillbepromptedforyourpassphrase.Enteryourpassphraseandclick‘OK’.Savetherevocationcertificatefilesomewhereverysafe,andthenclickthe‘Next’button.Click‘Finish’.Step13:Pressthe‘alt’keyonyourkeyboardonemoretime.Inthe‘Enigmail’menuatthetopofthescreen,click‘KeyManagement’.Right-clickonyournameandclick‘UploadPublicKeystoKeyserver’.Thiswillensurethatotherpeopleareabletofindyourpublickeywitheaseinordertoencryptemailstoyou.Congratulations!You’renowsetupforsecurePGPencryptedcommunication!
![Page 8: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/8.jpg)
MacUsers:
Step1:DownloadThunderbirdfromthefollowinglink:https://www.mozilla.org/en-US/thunderbird/
Step2:Mountthedownloaded.dmgfile(atthetimeofwritingthecurrentversionofThunderbirdis45.7.0,sothefileyouneedtomountiscalledThunderbird45.7.0.dmg)andinstallThunderbird.
Step3:LaunchThunderbird.Ifyouseea‘SystemIntegration’pop-upfeelfreetoclick‘Skipintegration’ifyoudonotunderstandanyoftheoptionsyoucanchoose.Alsoclick‘Skipintegration’ifyouuseAppleMailforyourregularemailsonyourMac.
Step4:Youwillseethe‘WelcometoThunderbird’screenaskingyouifyouwanttocreateanewemailaddress:
Step5:Onthe‘MailAccountSetup’screen,enteryourname,your‘personal / work’emailaddressandyourpasswordintherequiredfields.IwouldrecommendallowingThunderbirdtostoreyourpassword;otherwiseyouwillneedtoenteriteverytimeyouopenThunderbird.
Onceyouhaveenteredallrequiredfields,clickthe‘Continue’button.DependingonyourpreferenceyoucaneitherselectIMAPorPOP3.ThedifferencebetweentheseisthatIMAPdoesnotstoretheemailsfromyouraccountonyour
![Page 9: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/9.jpg)
computer,whereasPOP3doesstoretheemailsfromyouraccountonyourcomputer.IMAPisthedefaultselectionandshouldbesufficientformostpeople.Click‘Done’.
Step6:Clicking‘Done’willbringyoutoyourGoogleloginpage.Hereyouwillneedtoenteryouremailaccountlogincredentialsasnormal–youremailaddress,passwordandtwo-factorauthentication(ifalreadysetuponyouraccount).
Afterenteringyourlogincredentialsclicktheblue‘Allow’buttontoallowThunderbirdtoviewandmanageyourmail:
Thunderbirdwillnowbegintosynctheemailsfromyour‘personal / work’accountandtheywillappearwhenyouclickthe‘Inbox’folderontheleft.
Step7:Click‘Tools’atthetopofyourscreen,then‘AccountSettings’.ThiswillbringuptheAccountSettingsmenu:
![Page 10: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/10.jpg)
Click‘ServerSettings’inthemenuontheleft,andinthe‘ServerSettings’sectionchangethe‘Checkfornewmessagesevery’numberto‘3’minutes.ThiswillensurethatThunderbirdwillcheckforanddownloadanynewemailsevery3minutes.Donotchangeanyothersettingsinthissection.Click‘OK’.IfyougetawarningaboutJunkMailfolders,justclick‘OK’,andclick‘OK’againontheJunkMailscreenthatappears.YouarenowfinishedsettingupThunderbird!NextyouwillsetupGPGSuite,thenEnigmail.ToinstallGPGSuite,followthestepsbelow-youcanalsovisitthispagetoseepicturesofGPGSuitesetup:https://securityinabox.org/en/guide/thunderbird/mac/#install-gpg-suite-and-enigmailStep1:BrowsetotheGPGSuitedownloadpageathttps://gpgtools.org/gpgsuite.htmlStep2:Click[DownloadGPGSuite]todownloadtheinstallerdiskimage.Step3:MakesureDiskImageMounter(default)isselectednexttoOpenwithandclick[OK].Afteryourbrowserhasdownloadedthediskimage,FinderwillmountitsoyoucaninstallGPGSuite.Step4:Double-clicktheInstallicononthelefttobegintheprocessofinstallingGPGSuite.Step5:Click[Continue]tochoosealocationfortheinstallation.Step6:Click[Install]toinstalltoenteryourloginpassphrase.Step7:Typethepassphraseyouusetologintoyourcomputer.Step8:Click[InstallSoftware]toinstallGPGSuite.Whentheinstallerisdone,itwilllaunchtheGPGKeychainapplicationsothatyoucangenerateyourGnuPGpublicandprivatekeypair.
![Page 11: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/11.jpg)
NowyoucanquitGPGKeychainbyfollowingthestepsbelow.Step9:Click[Cancel]toclosethekeygenerationscreenStep10:ToquitGPGKeychain,pressCommand-Q.Next,youshouldquittheinstalleranddismounttheinstallationdiskimagebyfollowingthestepsbelow:Step11:SwitchbacktotheInstallGPGSuiteinstallerapplicationStep12:Click[Close]toquittheinstallerStep13:SwitchbacktoFinderStep14:DismounttheGPGSuiteinstallerdiskimagebypressingCommand-EwhilethediskimagewindowisactiveStep15:Clickthe‘Tools’menuatthetopofyourscreen,then‘Add-ons’.Thiswilltakeyoutothe‘Add-onsManager’screen.Step16:Type“Enigmail”intothesearchbarinthetoprightcornerandclickthemagnifyingglasstosearch:
Clickthe‘Install’buttononthefirstresultthatcomesup,titled‘Enigmail’:
![Page 12: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/12.jpg)
Onceithasfinisheddownloadingclicktheblue‘Restartnow’link.ThiswillrestartThunderbirdandinstallEnigmail,openingthe‘EnigmailSetupWizard’automatically.Step17:Ifitdoesappearautomaticallyclickthe‘SetupWizard’button,ensure‘Startsetupnow’isselectedthenclick‘Continue’.Ifitdoesnotappearautomaticallyclickthe‘Enigmail’filemenuatthetopofthescreenandclick‘SetupWizard’.Ensure‘Ipreferastandardconfiguration(recommendedforbeginners)’isselectedandclick‘Continue’.YoumayseeawarningaboutyourGnuPGversion,asshownbelow:
Ifyoudo,click‘OK’.Otherwise,simplycontinueontothe‘CreateKey’window:
![Page 13: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/13.jpg)
Step18:Hereyouwillneedtosetastrongpassphrase.Thispassphrasewillbeusedtoprotectyourprivatekey,anditishighlyrecommendedthatyoupickaphrasecontainingatleast8characters,digitsandpunctuationmarksatminimum–a16–24characterpassphrasewouldbepreferable.DONOTFORGETTHISPASSPHRASE.Withoutityouwillbeunabletodecryptemailsthatareencryptedtoyourpublickey.Onceyouhaveenteredyourdesiredpassphrase(andwrittenitdownsomewheresafe)clickthe‘Continue’button.Step19:Onceyourkeyhasbeencreatedyouwillneedtocreatearevocationcertificate.Clickthe‘CreateRevocationCertificate’buttonandyouwillbepromptedforyourpassphrase.Enteryourpassphraseandclick‘OK’.Savetherevocationcertificatefilesomewhereverysafe,andthenclickthe‘Continue’button.Click‘Done/Finish’.Step20:Inthe‘Enigmail’menuatthetopofthescreen,click‘KeyManagement’.Right-clickonyournameandclick‘UploadPublicKeystoKeyserver’.Thiswillensurethatotherpeopleareabletofindyourpublickeywitheaseinordertoencryptemailstoyou.Congratulations!You’renowsetupforsecurePGPencryptedcommunication!
![Page 14: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/14.jpg)
SendingaPGPencryptedemail:Tosendanencryptedemail,clickthe‘Write’buttonbeside‘GetMessages’.Thiswillopenupthecomposeemailscreen.Entertheemailaddressesofwhomeveryouwanttosendtheemailto.Intheupperleftcorneryouwillseeasmallpadlockiconandasmallpencilicon.Thepadlockiconshouldbeselectedautomatically,butifitisnotthengoaheadandselectitnow.ThistellsEnigmailtoencryptyouremail.Youprobablywon’thavethePGPpublickeyofthepersonyouaresendingtheemailto.RememberwhenyouuploadedyourPublicKeytothekeyserverinStep13?ThereasonyoudidthatwassothatpeoplecoulddownloadyourPGPPublicKeyinordertobeabletoencryptemailstoyou.WithThunderbirdandEnigmail,thisisveryeasy.Onceyouhavefinishedwritingyouremail,clickthe‘Send’button.Youwillseeapopupthatstates“Recipientsnotvalid,nottrustedornotfound”.Clickthe‘Downloadmissingkeys’button–thiswilldownloadthePGPPublicKeyofthepersonyouaresendingtheemailto.Ifthatperson(oratleastonepersononyourlistofrecipients)hasnotyetsetupPGPorhasnotuploadedtheirPGPPublicKeytothekeyserver,nokeywillbefoundforthatrecipientandyouwillnotbeabletoencrypttheemailtothem.Ifthisoccurs–andiftheemaildoesnotcontainsensitiveinformation–clickingthe‘Send’buttonwillsendtheemailunencrypted.AdvisethatpersontogettheirPGPsetupandsendthemthisguide!ReceivingaPGPencryptedemail:InordertobeabletoreadanemailfromsomebodythattheyhaveencryptedtoyourPGPPublicKey,justclickontheemailthattheyhavesenttoyou.Youwillbepromptedtoenteryourpassphrasetodecrypttheemail,andyouwillhavetheoptionoflettingThunderbirdrememberyourpassphrase.Feelfreetoselectthisifyouwish.Welcometotheworldofsecurecommunications!
![Page 15: PGP GUIDE - Bitcoin · PDF filePGP GUIDE This guide has been created to help you get PGP set up on your laptop or desktop computer. Thunderbird is, in my opinion, the easiest and the](https://reader033.vdocuments.net/reader033/viewer/2022051721/5a79b8e77f8b9a9b4d8c52a3/html5/thumbnails/15.jpg)
Extras:AnoteaboutprotectingyourPGPPrivateKeyandRevocationCertificate:Revocationisincrediblyusefulincaseyourkeygetscompromised-itmakesiteasyforyoutoletpeopleknowthatkeyisnolongerinuse/nolongersafe,sobesuretokeepyourrevocationcertificate(thatyousavedwhencreatingyourkey)somewheresafeandalsokeepabackupofit.Neveruploadyourprivatekeyoryourrevocationcertificatetoanycloudstorageorcloudemail;treattheprivatekeylikeakeytoasafe-nevershareitwithanyone-andtreattherevocationcertificatelikeyourinsurancetomakethesafe'scontentsuselessshouldsomeonemanagetogetthekeyandgetintothesafe.Amoredetailed,featurerichguideforWindowsuserscanbefoundhere:https://securityinabox.org/en/guide/thunderbird/windows/Amoredetailed,featurerichguideforMacuserscanbefoundhere:https://securityinabox.org/en/guide/thunderbird/mac/ThunderbirdandEnigmailarebothhighlyconfigurable;youcanreadmoreaboutconfiguringEnigmailtoyourownspecificrequirementshere:https://enigmail.wiki/Configuration