Set up
Thunderbird 3.0.3 OpenPGP (Enigmail 1.0.1).
Create keys
- OpenPGP -> Key Management.
- Select ‘Display All Keys By Default’.
- Generate -> New Key Pair.
- Select account.
- Tick ‘No passphrase’.
- Remove comment (as it’ll be available to those whom you send your public key).
- Generate key.
- Generate a revocation certificate when you get a popup asking whether you’d like to.
- Close the Key Management window.
Distribute your public key
- Create an email.
- OpenPGP -> Attach My Public Key.
- Send to whoever you’ll send signed emails or from which you’ll receive encrypted emails.
Receive a public key
If you receive someone’s public key as an attachment, right click it and select ‘Import OpenPGP Key’.
Send signed mail
The receiver will need your public key in order to verify the signature.
- Create an email.
- Click the OpenPGP button and select ‘Sign Message’.
- Send.
Send encrypted mail
You will need the receiver’s public key for this.
- Create an email.
- Click the OpenPGP button and select ‘Encrypt Message’.
- Send.
Gotchas
Can’t save draft messages
If you get the following error when trying to save a draft message…
Encrypt draft messages on saving
The email address or key ID ‘0x2ABBGC01’ cannot be matched to a valid, not expired OpenPGP key. Please ensure that you have a valid OpenPGP key, and that your account settings point to that key.
…then it could be that Enigmail is configured to use that invalid key.
To fix, do the following (with Enigmail 1.8.2 at least!):
- Go to Preferences -> Account Settings.
- Select the ‘OpenPGP Security’ section of your email account.
- Check that the ‘Use specific OpenPGP key ID’ option is not set to the invalid key.
- Alternatively, to prevent Enigmail encrypting draft messages, deselect ‘Encrypt draft messages on saving’.
Reference: Problem with Enigmail on Tbird/Mac
