#mailclient

koobaa@diasp.eu

#OpenPGP and GPG and S/MIME mail client vulnerbilities

To make it clear: There is no problem with #GPG, #PGP.
Nobody can read your encrypted emails in transit.
There is a problem with the your #mailclient the way it handles this emails!

The email clients are responsible to mitigate this (known) vulnerabilities.
You can see the problems with the mail clients in the graphic.
Here is the paper from the efail researchers.

Also see the answer of the GPG lead developer:

Here is how to mitigate the problem with #GPG emails in #Thunderbird:
Deactivate loading external content in the #Thunderbird settings „Privacy“ tab to disallow remote content in messages. Also choose 'View' > 'Message Body as' > 'Plain Text'.

There is currently no good solution for S/MIME. Don't use it if possible.

You can also consider using good and secure alternative messengers for communication, like Matrix, Wire, Threema or Signal.