Ok folks, what's the closest thing to an #email but entirely #E2EE like signal.

Surely I'm not the only one thinking of it? Others would have thought of something before me right?

And no, protonmail/tuta/whatever doesn't count.

I mean, there's so much work on decentralized E2EE, #matrix is even somewhat functioning in this matter (leaving cryptographic security aside, let's just use libsignal), then how is this not a thing no matter how far and wide I look for it?

Again, traditional email + #PGP is not a solution. It's been looked down upon by every practically every cryptographer.

You know what will be a great idea for #email? If you could put #PGP fingerprints in a mailto link.
Then you could just click on the link on someone's website and it would automatically encrypt the message.
And it's easier to trust the PGP key.
#e2eeemail #encryption #e2ee

Al Gore Invented the Internet.
Joe Biden invented PGP encryption.
Cypherpunks write code.

Joe Biden gifted humanity with PGP encryption (in a roundabout way). Phil Zimmermann created PGP in response to a anti-privacy bill clause proposed by Senator Joe Biden.

https://www.americanscientist.org/article/cypherpunks-write-code

"In 1990, the FBI launched an over-the-top crackdown on computer hackers, known as Operation Sundevil. This was swiftly followed, in early 1991, by a proposed piece of U.S. Senate legislation that would force electronic communications service providers to hand over people’s personal data. (The key clause, S.266, was pushed by the then chairman of the U.S. Senate Judiciary Committee, Senator Joe Biden.)"

"On learning of Biden’s S.266 clause, Zimmermann feverishly set out to complete the project, almost losing his house in the process. When he finished his software in 1991, he published it all online, free for anyone who wanted to use it. He called it “Pretty Good Privacy,” or PGP for short, and within weeks it had been downloaded and shared by thousands of people around the world. “Before PGP, there was no way for two ordinary people to communicate over long distances without the risk of interception,” said Zimmermann in a later interview. “Not by phone, not by FedEx, not by fax.” It remains the most widely used form of email encryption to this day."

https://www.congress.gov/bill/102nd-congress/senate-bill/266

"SEC. 2201. COOPERATION OF TELECOMMUNICATIONS PROVIDERS WITH LAW ENFORCEMENT. It is the sense of Congress that providers of electronic communications services and manufacturers of electronic communications service equipment shall ensure that communications systems permit the government to obtain the plain text contents of voice, data, and other communications when appropriately authorized by law."

#Biden #JoeBiden #PGP #Cypherpunks #Cypherpunk #PhilZimmermann #Privacy #Cybersecurity #Cryptography #GPG #Email #Senate #Law #Government #Panopticon #Hackers #Hacking #Security #Encryption

Delta Chat is a messaging platform that works over email.

Setup is similar to a email client.
Messaging is decentralized and interoperable.

Supports end-to-end encryption via PGP.
PGP encryption keys are created automatically.

Default desktop client is based on Electron.
Electron is based on the Google Chromium web browser.

Website: https://delta.chat
Mastodon: @delta

#DeltaChat #Messaging #Privacy #InfoSec #E2EE #OpenPGP #PGP #OpenSource #FOSS #CyberSecurity #Encryption #FreeSoftware

Alt...

Delta Chat logo.

Happy to report that about a year after getting a mate to communicate using Signal instead of WhatsApp, we just today made the progression to securing our emails via pgp. 🥳

He was already using Thunderbird as his email client, and although just a few clicks it was a James Bond meets Bill Gates moment when we sent and received encrypted, signed emails to one another. 🤓

[Per the anarchist theory of practice] I remain convinced this practice of changing how we behave on the internet with intention will continue to change the people engaging in it. Digital prefigurative politics, nibbling away at surveillance capitalism one little data set at a time.

Slowly slowly catchim' monkey...... 🐒

Happy days. 😀

#pgp #encryption #Thunderbird #privacy

I see some people still using ancient PGP keys. GnuPG offers Linux repositories for updating to the latest versions of GnuPG with new expert features for key generation. Recent versions support both Kyber1024 and Goldilocks448 keys (and more).

Once installed run: :~$ gpg --full-generate-key --expert

New GnuPG Repositories for Debian, Ubuntu, and Devuan: Stable and Development Branches Available

https://www.gnupg.org/blog/20250827-new-repository.html

#PGP #GPG #PQC #GnuPG #Encryption #Cryptography #Privacy #Signatures #Kyber #Goldilocks #ED448 #Keys #PublicKey

"Despite advancements in secure messaging, PGP (Pretty Good Privacy) encryption—developed in the 1990s—remains a gold standard for privacy. Unlike modern apps reliant on centralized servers or phone numbers, PGP ensures end-to-end encryption without third-party dependencies. This article explores PGP’s enduring relevance, key management best practices, and how it compares to contemporary solutions like Signal."

#PGP #GPG #Encryption #Messaging #Cryptography

@koteisaev @craignewmark not necessesarily.

• My experience with @gajim & @monocles / #monoclesChat is that it's actually easy toconboard folks with a few steps.

The problems re: @delta / #dletaChat and/or @thunderbird may be caused by #eMail providers either actively blocking #PGP/MIME and/or inline-#PGP, having extremely tight quotas and/or filtering #UserAgents / #Clients.

• At least from my experience...

@craignewmark Maybe go hard on advocating for #PGP/MIME & #XMPP+#OMEMO?

• Espechally since @delta / #deltaChat & @thunderbird / #Thunderbird (PGP/MIME) as well as @gajim / #gajim & @monocles / #monoclesChat (XMPP+OMEMO) make real #E2EE (with #SelfCustody!) user-friendly.

@mechanix @delta @randy_ @gaufff precisely!

Personally, I feel confirmed to not use #Centralized & #proprietary #SingleVendor & #SingleProvider options like @signalapp / #Signal which by virtue of collecting #PII in the form of #PhoneNumbers are at best #UsefulIdiots if nit a blatant #HoneyPot...

• Instead, #EncryptHarder and go full #XMPP+#OMEMO / #PGP/MIME over @torproject / #Tor as a matter of principle.

Anything else doesn't work!

• The only way you can guarantee your #HumanRights is by actively enforcing and using them in the most aggressibe way possible that doesn't infringe upon others' rights...

@mrmasterkeyboard @arnan if there's one thing I'd wish for, it's a #CLI / #TUI based "#Office Suite" with like:

• a #Markdown-centric #TextEditor,
• #TSV-centric #spreadsheets program,
• maybe a minimalist #PostgreSQL / #SQLite / #MariaDB client,
• #API tester (similar to #Postman),
• #neomutt-style #eMail client (with #PGP integration!) and
• maybe even some Image Viewer than can run entirely in #ASCII-#DEC or even #MDA terminal @ 80x24.

But that's just me wanting to be able to work entirely on @os13379one day...

https://mastodon.social/@mrmasterkeyboard/115256183525522481

@KirbySSM #Texts (as in #SMS messages) never were private!

• The only #pdivate and #secure #messaging solutions are those with real #E2EE incl. #SelfCustody of all the keys...

And thus #XMPP+#OMEMO & #PGP/MIME are the only.option, because unlike #Signal and others they can be setup and run in away they can't snitch on users!

@ferret THIS is why I don't trust anyone - espechally not #UsefulIdiots like @signalapp - and recommend everyone to use real #E2EE like #XMPP+#OMEMO & #PGP/MIME.

• Clients like @monocles / #monoclesChat & @gajim / #gajim as well as @delta / #deltaChat & @thunderbird / #Thunderbird make that super-easy.

Obviously, the highest security is having your own server under your bed to be able to yeet all data with a single command.

• And yes, I did also setup the latter for #ComSec in one case where being able to wipe an account remotely was necessary.

@blueluma well, there are #OpenStandards that are truly #decentralized and allow for real #E2EE without bs.

• #XMPP+#OMEMO as offered by @monocles and useable through many clients like #monoclesChat, @gajim / #gajim, @pidgin / #pidgin and many more.

• #PGP/MIME as implemented by @delta / #deltaChat & @thunderbird / #Thunderbird work fine.

Imagine This:

You are security researcher
You don't have a #PGP pubkey nor #XMPP+#OMEMO setup
You insist on using #Signal and/or #Telegram and/or #ProtonMail

What are you?

• An #ITsec - #Cosplayer??

#nonmention

Seriously folks:

1. learn fucking #ComSec, #InfoSec & #OpSec cuz

2. every service that demands #PII like a #PhoneNumber is inherently insecure &

3. a lot of places criminaloze #anonymous #SIM #cards & demand #KYC for any Phone Number.

4. It is your moral duty as #TechLiterates to foster and.normalize #OpenStandards that are in fact secure, like #XMPP+#OMEMO & #PGP/MIME.

5. there's no excuse to not use @torproject / #Tor when tools like @micahflee's #OnionShare and @tails_live / @tails / #Tails exist.

6. #SourceProtection is not negotiable!

@nominom all #Matrix clients are shit.

• I'll stick with #IRC, #XMPP+#OMEMO and #PGP/MIME.

@wyatt #TLDR: There's no valid excuse not to provide #FTP because #integrity and #authenticity can and should be checked otherwise (i.e. #PGP signatures)...

@micahflee good Idea, tho I'd use #XMPP+#OMEMO or #PGP/MIME for the former and #IRC for the latter ...

@sleepybisexual also anything but #TOTP & #HOTP is just garbage.

• Personally, I think the only good #2FA is #PGP-based but very few sites support it.