shorter intro sentence
add link to spoofing email signatrues writeup
|Deletions are marked like this.||Additions are marked like this.|
|Line 4:||Line 4:|
|Wiki for [[http://gnupg.org|GnuPG]], [[http://gpg4win.org|Gpg4win]] and related Free Software initiatives.||//([[about|About this wiki]])//|
|Line 6:||Line 6:|
|**The content of this wiki may be different from the positions of the [[https://gnupg.org|GnuPG Project]].**||**[[Gpg4win|-> Gpg4win-Section]]**|
|Line 8:||Line 8:|
|**[[Gpg4win|Go to Gpg4win-Section]]**||**[[WKD| -> Web Key Directory and Service]]**, which makes exchanging crypto mails much easier.|
|Line 10:||Line 10:|
|**[[WKD|Web Key Directory Proposal 2016]]**, email-providers and mail-application-vendors can provide a much better OpenPGP user experience.||== Notable Events
* 2019-04-30: [[https://www.gpg4win.org/statement-spoofing.html|About detecting spoofed email signatures]] a writeup by Gnu~PG/Gpg4win
* 2018-05-17: [[https://www.gpg4win.de/statement-efail.html|Gpg4win statement on the Efail research]]
* 2018-02: Project [[https://github.com/mailvelope/mailvelope/wiki/mw2018|mw2018]] to improve Mailvelope by adding a native Gnu~PG option, better crypto library and webforms.
* 2017-12-31: End of Life for ~GnuPG 2.0.x. (So you really want to use ~GnuPG 2.2 or Gpg4win 3.0 .)
* 2017-09-21: [[https://www.gpg4win.org/version3.html|Gpg4win 3.0 released]], includes MIME capable
Outlook-Add-in, GnuPG 2.2, [[WKD]]-requests and update notifications.
* 2017-08-28: [[https://lists.gnupg.org/pipermail/gnupg-announce/2017q3/000413.html|GnuPG 2.2 released]],
comes with ECC and does "web key directory" requests by default.
|Line 18:||Line 27:|
|* TroubleShooting: What to do when something doesn't work.||* TroubleShooting: What to do when something doesn't work (mainly on Windows for Gpg4win)|
|Line 24:||Line 33:|
|* [[Tools]] that may help running or administrating GnuPG or Gpg4win|
|Line 27:||Line 37:|
|* [[AgentForwarding|How to use local secrets on a remote machine]]|
|Line 30:||Line 41:|
|* [[BestUxPractices|Suggestions for common UX practices]]|
|Line 49:||Line 61:|
|Line 61:||Line 74:|
== About this Wiki
The aim of the ~GnuPG Project and the initiative ~Gpg4win is
to provide software solutions for everyone to
* enable email and file end-to-end security, **offering protection against being listened to by servers or transport systems**.
* use openly researched crypto algorithms.
* allow the implementations to be independently audited.
(Which is achieved by publishing them as [[https://fsfe.org/about/basics/freesoftware.en.html|Free Software]].)
In 2015 a big challenge for a better user experience for **email and file-transport security**
is certificate discovery and trust building. The [[https://g10code.com/steed.html|STEED]] concept proposes
Help us to [[improveThis|improve]] this wiki!
-> Web Key Directory and Service, which makes exchanging crypto mails much easier.
- 2019-04-30: About detecting spoofed email signatures a writeup by GnuPG/Gpg4win
- 2018-05-17: Gpg4win statement on the Efail research
- 2018-02: Project mw2018 to improve Mailvelope by adding a native GnuPG option, better crypto library and webforms.
- 2017-12-31: End of Life for GnuPG 2.0.x. (So you really want to use GnuPG 2.2 or Gpg4win 3.0 .)
- 2017-09-21: Gpg4win 3.0 released, includes MIME capable Outlook-Add-in, GnuPG 2.2, WKD-requests and update notifications.
- 2017-08-28: GnuPG 2.2 released, comes with ECC and does "web key directory" requests by default.
GnuPG for Users
- Documentation Overview
- LargeKeys: How many bits are enough?
- WebOfTrust: Understanding the web of trust
- GnomeKeyring: What to do when Gnome Keyring Hijacks your GPG Agent
- TroubleShooting: What to do when something doesn't work (mainly on Windows for Gpg4win)
- PlatformNotes - what to be aware of when using or administrating GnuPG on different platforms.
- X.509 hints (needed for S/MIME and trusted root certs)
- SmartCard hints
- Wishlist Where to submit feature requests
- Applications using GnuPG
- Tools that may help running or administrating GnuPG or Gpg4win
- LDAPKeyserver: How to configure OpenLDAP as a keyserver.
- Hints for use with NFS
- How to use local secrets on a remote machine
GnuPG for Developers
- Suggestions for common UX practices
- How to use GnuPG from your application (GnuPG's API)
- Building GnuPG 2.1: GnuPG 2.1 is the latest GnuPG version but as with all 2.x versions it has several dependencies, which make building it a bit more difficult. Here are some notes.
- API checker: Upstream-Tracker.org checks ABI/API changes for some libraries like gpgme, libgpg-error, libgcrypt.
Note that the tools can't necessary decide whether something is an ABI or API change. The output should be used as a hint to look for whether there might be a problem. We are not aware of any broken API or ABI contracts for the listed libraries.