Do You Use Email Encryption??

Discussion in 'polls' started by tobacco, Jul 27, 2010.

?

Do You Use Email Encryption

  1. Yes

    13.8%
  2. No

    86.2%
Thread Status:
Not open for further replies.
  1. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
    My first poll so go easy on me alright ;)

    I've paid my dues and learned about and put in place "email encryption" but am having trouble understanding why no-one else wants to do it. Only "1" of my friends/contacts uses it and the rest don't want to be bothered with it.

    So i am asking you - a wilder's member, if you use email encryption??

    If yes - please list what program(s) you use/why you use encryption/if a high/low percentage of your friends and contacts use encryption.

    If no - please tell us why you don't and if you plan to use encryption in the near future
     
  2. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
    Yes i use the Thunderbird email client with the Enigmail extension and GPG4Win. They work great together and are all "free". Have encryption setup to use with both my gmail and hotmail accounts. Only one of my contacts uses encryption :(

    I hate the snooping the NSA and other outlets do and detest the fact that my email is scanned for advertising purposes. Though i have nothing to hide, i do it for privacy issues.
     
  3. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,719
    Location:
    Texas
    That's the biggest problem with encrypted mail.

    If it requires any extra steps, users shy away from using it.
     
  4. LowWaterMark

    LowWaterMark Administrator

    Joined:
    Aug 10, 2002
    Posts:
    17,873
    Location:
    New England
    I haven't entered a Poll response yet because it feels like I should select "No" even though I have a full set of encryption tools on my system. (A commercial version of PGP's application set.) "No" seems correct because literally no one I know uses encryption, so, I never use it even though I can.

    Here's a story... Maybe three or four years back, myself and several other site owners, some of their staff, and other security industry folks, all got together, created PGP keys, and even cross signed each other keys. The idea being we'd be able to sign messages for identity verification as well as detection of message tampering, plus, the ability to send encrypted messages and files, when needed.

    Sounds good, right? Well, we used it a few times for testing, then time passed... In daily usage, signing and encryption wasn't really needed - little that we did required that level of security.

    After many months, maybe a year or so, almost no one in the group still had their keys or encryption software available. One guy wanted a file that I considered rather sensitive, so, I said I'd send it to him encrypted. He replied back that the encryption software and key was on a computer that wasn't hooked at present, so, he wouldn't be able to decrypt it. Another guy went offline a while, and when he got back online, he didn't have the same ISP or email address, so verifying his identity was a problem. When I suggested that he use his encryption key to send me a message that I could then validate as having been signed by him, he said the PC with that software crashed, he never bother to recover it, and he no longer had any encryption software or access to his old key.

    :rolleyes:

    So, even among some security industry insiders, it is difficult to find people who want to bother with the extra effort required to maintain and use encryption technology. While I'm sure there are some people who do use encryption on a regular basis, (I'm talking just normal people sending signed and/or encrypted emails, not people doing real online business - i.e. financial file transfers, commercial transactions and so on, where encryption is absolutely required for business sake and by partner contracts or legal requirements), a lot just can't be bothered.
     
  5. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    4,213
    No, I don't. As mentioned most people (including myself) couldn't be bothered with it. I use Gmail, and personally I don't believe they will ever use personal information unlawfully.

    Some people make so much noise about privacy issues related to Gmail, but the real danger for one's privacy is the Internet itself, blogs, Facebook, MySpace, Twitter and their ilk.

    If I were a medical practitioner or a lawyer, perhaps encryption of my mail and some of the recipients would make sense.
     
  6. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    5,828
    Location:
    Last Breath Farm
    Good first poll, tobacco.
    I believe that if more of us knew how insecure the medium is, we might all be more adamant about encryption.
    We always read about prying eyes being able to see each email if they want to, but who among us has actual evidence of others reading our messages?
    I use email for work, and I attach contracts in PDF formats, and so far, I am not aware of any problems.
    Encryption seems like a fine idea, but we haven't been knocked over the head with proof of privacy violations, so we do what is most convenient. Nothing.
     
  7. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,468
    Nope, and i don't even know how it works :rolleyes:
    Might i get enlightened :D
     
  8. PJC

    PJC Very Frequent Poster

    Joined:
    Feb 17, 2010
    Posts:
    2,959
    Location:
    Internet
    Do You Use E-mail Encryption??

    No, I don't use E-mail Encryption.
    My e-mails have No Secrets to hide. :D
     
  9. Ocky

    Ocky Registered Member

    Joined:
    May 6, 2006
    Posts:
    2,677
    Location:
    George, S.Africa
    If really necessary I send an encrypted pdf or encrypt a zip attachment, but of course the other party will need to be advised of the password.
    Maybe anything encrypted will raise ISP's suspicions that something illegal/sinister is being sent and the 'authorities' will be informed ?
     
  10. Woodgiant

    Woodgiant Guest

    Yes I use e-mail encryption when I send my wiki leaks:D :p , .... ok ok the true is that I never have had the need for e-mail Encryption...yet
     
  11. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
    Well, it looks like wilder's members are no different then my friends and contacts :(

    I do feel however that email encryption will be the "norm" but how long that takes is anyones guess.

    One friend that i "was" bugging to use encryption has had his hotmail account hacked twice in the past month with all his addressbook contacts being sent "viagra spam" :eek: "Twice" and he just didn't care until i told him to "remove me" from his contact list.
     
  12. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    4,046
    Location:
    USA
    Add me to the no column. Actually I would love to see it catch on, but it requires everyone else to use it also and there is the obvious problem. The average user doesn't know how or why they should, and until it comes as a default option in Outlook (or your average webmail site) I doubt we'll see much of it. :(
     
  13. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    5,828
    Location:
    Last Breath Farm
    So the encryption also encrypts the address book?

    I always figured that Hotmail accounts being hacked had more to do with keyloggers and trojans present on a system, as opposed to unencrypted email.
    For instance, my spam influx will be going along at a fairly normal, low rate, then all at once it will spike through the roof. It always seems to correlate with having sent one email to a new person, and I've always figured that individual likely had an infected system that harvested my address.
     
  14. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
    No it doesn't however, that should of been a warning sign to start taking email security more seriously.

    The funny thing is, if the "mailman" walked up to your house having opened all your mail and was reading it before putting it in your mailbox, i bet 99% of people would be "absolutely furious" :eek:

    Why is the attitude towards email differento_O ?
     
    Last edited: Jul 28, 2010
  15. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
    Hey There Noob

    Have a look at this nice freebie - https://www.wilderssecurity.com/showthread.php?t=277867

    Don't even need an email client and for "Noobs" :D , easy to understand with the help of built-in how-to demos!
     
  16. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,468
    WOW, looks nice, but right now or i mean i have never really used E-Mail a lot.
    Just for school things and every now and then something random :rolleyes:
    But ill bookmark this man :D Just in case who knows :shifty:
     
  17. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
    Sure Thing Noob

    Have another look at it when you begin using email more.
     
  18. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    2,433
    Location:
    Europe

    Quote. And LowWaterMark added all needed considerations.
     
  19. hugsy

    hugsy Registered Member

    Joined:
    May 22, 2010
    Posts:
    167
    I don't use encryption in email because no one i send it to doesn't and they can't decrypt it. I would use it just to piss off snoopers but coworkers just send mail back saying that they cant open it :mad: they don't even try to bother with protected pdf containing contracts yet alone with some other format or container

    I would agree that encrypted mail is a must, at least https to connect to the provider, but i have no idea how to introduce that to the "not concerned about security" user.
     
  20. Carver

    Carver Registered Member

    Joined:
    Feb 5, 2006
    Posts:
    1,827
    Location:
    USA
    More users would encrypt their email if the email client software makers would build in decryption utilities, the emails I encrypt I get returned as un-open-able.
     
  21. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
    Great responses so far :thumb:

    Seems to be several that would like to use encryption but are in the same boat as me :(

    I've said my peace to my friends and other contacts and am not going to push the matter further. What i do though is sign each and every email with my pgp key which is hard too miss :D to keep them thinking about it :D
     
  22. Saint Satin Stain

    Saint Satin Stain Registered Member

    Joined:
    Feb 16, 2004
    Posts:
    222
    Location:
    Huntsville, AL and Greenwich Village, NYC
    I use VeriSign and PGP.
     
  23. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
    And how about your contacts?? Do many encrypt also??
     
  24. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,468
    Actually thanks to this thread i started encrypting some of my USB's just to make sure :D
    (TrueCrypt FTW!)
     
  25. John Bull

    John Bull Registered Member

    Joined:
    Nov 22, 2009
    Posts:
    904
    Location:
    London UK
    Hi Smokey.

    Answer = NO, never have, never will.

    No need to, none of my Emails contain any personal data worth grabbing, they would get a laugh if they did.

    Encryption ? Far too messy and too much trouble for normal scribblers.
    I never enter any risk data and certainly not any financial data on my Email systems. Banks and so on ? I phone `em or mail `em.

    I use OE6 as my top choice with Mozilla Thunderbird as my reserve for private stuff under my real name and Gmail for other stuff where the fictitious John Bull is the rider.

    John B
     
Loading...
Thread Status:
Not open for further replies.