[Users] [Bug 2965] Encrypted mails are stored unencrypted in 'Queue' while sending via IMAP
noreply at thewildbeast.co.uk
noreply at thewildbeast.co.uk
Tue May 5 15:31:34 CEST 2015
http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=2965
--- Comment #11 from sajolida at pimienta.org ---
I'm a technical writer and I don't think that it's pedantic to take the time to
find the correct words. I used the word "leak" because an information that the
user is trying to hide from her email provider (using end-to-end encryption) is
revealed against their will and without her noticing it. Which word would you
propose instead?
The problem that we describe here happens with the default IMAP configuration
in Claws Mails. The only configuration that prevents it from happening is the
workaround that we are describing in [1] that uses folders from a local
mailbox.
I hope that you don't consider that an average user who wants to use OpenPGP
and IMAP for end-to-end encryption should figure that out by herself and is
otherwise not configuring Claws properly and not making the right choice. Claws
Mail should have safe defaults when handling OpenPGP encrypted emails. We
ourselves have been shipping Claws for years before realizing that this was
happening.
[1]:
https://tails.boum.org/blueprint/claws_mail_leaks_plaintext_to_imap/#index6h2
If you have a better fix to propose please share it with us. Until then we're
glad to know that this is on your TODO list.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the Users
mailing list