What Is Enigmail?
ENIGMAIL FEATURES AND SOLUTIONS: Enigmail is an add-on to the email clients Mozilla Thunderbird and Postbox allowing users to access the authentication and encryption features provided solution by GnuPG. Thus Enigmail enables Thunderbird and Postbox to send and receive digitally signed and/or encrypted messages using the OpenPGP standard.
FEATURES OF ENIGMAIL
- Encrypt/sign mail when sending, decrypt/authenticate received mail.
- Support for inline-PGP (RFC 4880) and PGP/MIME (RFC 3156).
- Per-Account based encryption and signing defaults.
- Per-Recipient rules for automated key selection, and enabling/disabling encryption and signing.
- OpenPGP key management interface
Why is Enigmail showing key error messages after I upgraded?
If you upgraded Enigmail and started seeing error messages such as these:
- “Error – No matching private/secret key found to decrypt message.”
- “Send operation aborted. Error – encryption command failed.”
- “Send operation aborted. Key 0x12345678 not found or not valid. The (sub-)key might have expired.”
Which Key Type/Size Should I Choose For My Key Pair? Which Is Best On Engmail?
There is no such thing as “the best key type” or “the best key size”; all choices have consequences and trade-offs. You might feel that a 4096-bit RSA key is safer. But the person you’re sending email to might be trying to read it on an old PDA which takes over a minute to decrypt each message.
You might decide to use SHA-1 digest because it’s widely supported in OpenPGP implementations. But SHA-1 has some mathematical flaw and does not offer long-term security. Finding precisely the optimal set of consequences and trade-offs is a very subtle thing.The perfect set for you will probably not be the same for anyone else.
The IETF OpenPGP Working Group has spent over a decade looking at which choices offer an excellent balance of speed, safety, and compatibility for the vast majority of users. Hence, Their opinions have evolved over time to take into account the technology and threats of the day. The people of the GnuPG project are active participants in the Working Group, and as such GnuPG implements the Working Group’s recommendations.
Therefore, the best advice we can give is to stick to Enigmail’s defaults, which will work fine for the overwhelming majority of users.
Encryption and Decryption
How do I encrypt automatically my Enigmail messages?
If you use the default configuration, Enigmail Features will automatically encrypt all messages whenever possible that is, if you have the public keys for all recipients.
Additionally, you may set single (or all) identities to always encrypt, and opt-out while sending if you don’t have a recipient’s key and it is acceptable for you to send that message unencrypted.