||Mozilla GnuPG HOWTO
Enigmail is a GnuPG and PGP plugin for Mozilla. Basic instructions on how to install and set it up.
- Install Enigmail from Enigmail
- Restart Mozilla. If you get problems with Enigmail try the help at Enigmail help
- You need to change a few Enigmail options.
- From the Enigmail menu in the Mozilla Mail and News client, select preferences
- Enter your email address in the user email address box.
- Click the advanced button, and put c:\winnt\gpg.exe in the GPG/PGP executable path box.
- You can change the default sending method. Initially it is set to encrypt if possible, though until you have built up a collection of the keys of all the people you email regularly, this will probably be annoying.
- You can also choose whether to sign all messages by default in the advanced menu.
- Close the preferences window.
- Get GnuPG from GnuPG.org
- Open the zip archive in winzip and extract gpg.exe gpgv.exe gpgkeys_ldap.exe and gpgsplit.exe to c:\winnt
- Make a c:\gnupg directory
- Download GPGshell from www.jamaros.de/rsoft/ - this isn't essential but is Useful for managing your key-rings.
- From the Keys menu, chose new.
- A DOS box will appear containing the GnuPG dialogues.
- You will be prompted to select what kind of key you want. Choose 1 DSA and ELGamal
- Next you are asked what key size you want. Very basically, the bigger the key, the longer it will take to break by brute force attack. Choose at least 1024.
- Next you will be prompted for a key expire date. If you want to make a key for a specific task then you will want a key that expires when that completes. You can't encrypt messages with a expired key, but you can still decrypt.
If unsure say at least never for you initial key.
- Next you are prompted for you Real Name, a comment and an email address. These are used to identify your key. The email address is the address associated with this key. A key can be associated with more than one email address. More addresses can be added later.
- Next the passphrase for this key. You will need to type this every time you access your secret key - to decrypt messages and to sign messages. This is also the last line of security should someone steal your private key.
- backup c:\gnupg to somewhere safe. If you loses the contents of this directory you won't be able to decrypt any messages. Burn it off to CD and keep the CD somewhere safe is a good option, but make sure no one can steal the CD!
Before you can send someone an encrypted message you need to import a public key from them.
You can import keys from email messages using the 'import public key' option from the Enigmail menu.
Sending encrypted email
You will now have an 'enigsend' button in the send dialogue window. Pressing this will send a message with the default options set in hen Enigmail preferences. If you wish to send the mail using a different method (unencrypted, signed, signed and encrypted) then you can select these options from the Enigmail menu.
Back to email encryption