Facebook Encrypted Notification Emails

Encrypt your Facebook Notification Emails with PGP

It’s well-known that email isn’t really that secure, with a large percentage of mail servers communicating without TLS, mail clients not being set up to use secure connections, and more commonly easily guessed user passwords.

Using PGP to encrypt messages helps to retain the privacy that age-old email systems don’t give you, keeping your message contents secured between you and the recipient (and back again).

While this is great, a lot of email come from systems and not people – and the contents of the messages can be equally as confidential. Thankfully, Facebook have, as of June 2015, added experimental support for users to add their OpenPGP public keys to their profiles and opt for all mails from Facebook to be encrypted.

Securing your Facebook Mails

Sound good right? Here’s a quick two-step guide how to encrypt your Facebook Notification Emails with PGP! Continue reading

GitHub add support for GPG Signature Verification

It’s official, GitHub has announced (as of April 5th 2016) that they will now be supporting GPG-signed commit verification!

GitHub GPG Verified Commit Signature

A series of gpg-signed commits, showing the signature verification on GitHub

GitHub now shows signed git commits and tags with a green “Verified” button, not only indicating that the commit or tag is signed, but validating the GPG signature against the keys that are known to that user (set in your GitHub account settings)

The signature verification is also visible within Pull Requests, which is a great feature for large open-source projects to verify that code from trusted project members is really from the right people.

Why Signed Commits Are Important

Continue reading

Receiving a PGP-Encrypted Mail in El Capitan

OpenPGP: GPGMail on El Capitan (OS X 10.11)

Not all that long ago I wrote a post on how to setup PGP on Mac OS X, and a similar post on PGP Setup for Windows. Since then there have been a number of updates, but one deal-breaker (at least for me) has been Apple’s latest OS X Beta, El Capitan (10.11) which broke GPGMail entirely.

Getting GPGMail working with El Capitan

The latest Alpha release of GPGMail (from the GPGTools suite) is now available with support for the latest Beta version of Apple’s OS X 10.11 El Capitan! Want it? Go get it! Just remember – It’s a nightly release: There are known issues and problems should be expected!

To get setup with the latest Alpha of GPGMail, head over to GPGTools Nightlies and grab the special alpha “GPG Mail for El Captian” release from the bottom of the list:

The GPGTools Nightlies Webpage

The GPGTools Nightlies Webpage


Once you’ve downloaded the DMG file, mount it with finder and run the installation. You might want to close Mac Mail before doing so!
The installation will complete, and the familiar GPGTools buttons are back, along with the OpenPGP green button on the top-right of new messages!

GPGMail: Composing a mail on El Capitan

GPGMail: Composing a mail on El Capitan


Looking good! The received version has all the usual verification marks, showing that the message (which was Encrypted and Signed using My PGP Key), as you can see below:

GPGMail: Receiving a PGP-Encrypted Mail in El Capitan

GPGMail: Receiving a PGP-Encrypted Mail in El Capitan


So now I have OpenPGP functionality restored to my Mac once again thanks to the awesome team at GPGTools, and for an alpha build, it really isn’t all that bad! Hopefully a beta release will be available soon, in the mean time this release will certainly do the trick for me, as signing, encrypting, decrypting, and verifying messages all seems to work without a hiccup.

PS. You can find me on Keybase as Danw33!

Setting up PGP on Mac OS X

Just last week I wrote a post explaining How to set up PGP on Windows, but seeing as though I now use a Mac for most of my day-to-day work, here’s an alternative guide to help you to set up PGP on Mac OS X so that you can use OpenPGP encryption and signing, manage your keys, and more from the comfort of your Mac!

PGP on Mac – Installing GPG Tools

Check out the GPGTools website and download the latest version of the GPG Suite. Once it’s downloaded, mount the disk image (just double-click it in your downloads folder) – you should see something like the following:

GPG Suite Disk

Contents of the GPG Suite Disk Image (.dmg)

Continue reading

Setting up PGP on Windows with Thunderbird

Here’s a short (well, kinda short) rough guide on getting setup with PGP on Windows with Thunderbird! We will be using Gpg4win to provide the GnuPG tools and essentials for easily using PGP, and Enigmail to add support to Thunderbird for OpenPGP signing and encryption.

Got a Mac? Check out my guide to Setting up PGP on Mac OS X!

PGP on Windows – Installing Gpg4win

Head over to Gpg4win and download the latest version (v2.2.1 or newer) and once it’s downloaded run the installer. You will be presented with a set of options somewhat like the following:

Gpg4win Setup: Choose Components

Gpg4win Setup: Choose Components

Continue reading