Export the public key to a GPG key server (optional).Key management: import GPG public keys.Configure additional OpenPGP preferences.Configure Thunderbird preferences for greater security and anonymity.Encrypt and store the revocation certificate securely.Create an OpenPGP encryption key pair and revocation certificate using the Thunderbird Setup Wizard.Setup the new email account: Thunderbird account settings, and enforce connections to the email provider's Onion Service.Create your login password and store the credentials in KeePassXC (optional).Visit your suitable email provider website anonymously via Tor Browser (Preferable if it support onion hidden services).High-risk users might also consider creating an airgapped OpenPGP key pair rather than relying on Thunderbird as per these instructions. Tip: If possible, critical information that is of high value should not traverse computer networks at all, or even risk exposure to Internet-facing computers. Also, mistakes or poor security practices on behalf of the email recipient can inadvertently lead to disclosures of plaintext. Keep in mind this method does not make email infallible - advanced adversaries can easily penetrate Internet-facing endpoints of targets with today's cutting-edge surveillance and offensive systems. Further, a strong encryption key-pair is created so the user has strict control over the private key, which is stored securely. To minimize these risks and improve security, the following guide uses a suitable Desktop Email Client instead of webmail, paired with strong, end-to-end encryption that protects the contents so it can only be read by the intended recipient. Further, online providers can be hacked or coerced by adversaries to provide access for extended periods. Online systems can still be broken by an attacker capable of exploiting JavaScript flaws or undermining certificate authorities that provide encryption certificates for websites see Webmail. The following guide provides a higher security and privacy standard than relying upon online services such as ProtonMail or Tutanota, that promise "encrypted email" in transit or storage. Thunderbird in Whonix ™ comes with anonymity, privacy and security settings pre-configuration through the pre-installed anon-apps-config package. However, it is now easier to take advantage of encrypted email via the use of Thunderbird (Mozilla's email client), which includes a built-in OpenPGP encryption program. 8 Using Thunderbird with the System GnuPG Keyringĭue to the complexity of software in the past, one of the most underutilized forms of protection for users is email encryption.7.2 Export the Public Key to a GPG Server.6.1 Configure Thunderbird Folders from Account Settings.6 Final Thunderbird and Email Account Settings.5.1 Create an OpenPGP Key Pair by Thunderbird. 5 Create an OpenPGP Key Pair and Revocation Certificate.4 Setup the New Email Account in Thunderbird.3.1 Choose an Appropriate Email Provider.3 Create a New Email Account with Tor Browser.
0 Comments
Leave a Reply. |