aboutsummaryrefslogtreecommitdiffstats
path: root/doc/C/config-encryption.sgml
blob: e36f17c6529d79f62359f47ddca5df8b85fcc5ff (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
<!DOCTYPE article PUBLIC "-//GNOME//DTD DocBook PNG Variant V1.1//EN"[]>

<article>
  
  <sect1 id="encryption-intro">
    <title>What is Encryption?</title>
    <para>
      Encryption is an ancient method of changing readable text to unreadable
      text that dates back to Egyptian times.  Encryption takes the statement
      "Evolution" and turns it into something which cannot be read without help
      through decryption.
      <example>
    <title>Encryption Example</title>
    <para>
      Kevin orders an <application>Evolution</application> t-shirt from
      Ximian, Inc. over the internet.  He puts in his credit card number
      which is 1234-567-8901.  For security, his computer encrypts the
      credit card number so it can be safely transmitted over the internet.
      The number now is @#$23ui7yr87#@!48970fsd, which holds no intentional
      resemblance to the inital number.  When the information gets to
      Ximian, Inc. it'll be decrypted into the inital number.
    </para>
      </example>
      Encryption can be used in email in two ways: to verify that the sender is
      the real sender, and to hide the message while in transmission.
      <application>Evolution</application> has the capability to do both.  
    </para>
  </sect1>
  <sect1 id="generating-key">
    <title>Generating your PGP key</title>
    <para>
      First, you need to create a PGP key.  To do this, you'll need GPG
      installed.
    </para>
    <tip>
      <title>GPG Versions</title>
      <para>
    This manual covers version 1.0.6 of GPG.  If your version is different,
    this may not be entirely accurate.  You may find out your version number
    by typing in: <command>gpg --version</command>.
    </para>
      </tip>
    <para>
      You can start by typing in: <command>gpg --gen-key</command>.  At the
      first question, select 1.  The next question asks you about key length.
      The longer the key, more stronger it is.  However, the longer the key, the
      longer it takes to generate.  This is your choice.  However, 1024 bits
      (default) should be adequate.  The next question asks you if you want your
      key to expire.  Expiring keys make your key invalid after a certain amount
      of time, so old keys don't float around active.  This is the same concept
      as a coupon at a supermarket.  Next, you'll type in your Real name, your
      email address, and a comment.  You should not forge this information, as
      it is used later to verify who you are.  Assuming that all your
      information is correct, press "O" to continue.  GPG now asks you for a
      passphrase.  This is a password which you will need to decrypt and encrypt
      messages.  This can be any length, with any characters in it.  It is case
      sensitive, which means that it does know the difference between capital
      letters and lower-case.  Now your key is generated.  It is recommend you
      surf the internet, read your email, or write a letter in a word
      processor.  This help creates randomness in the key.
    </para>
    <para>
      Once this is completed, you'll be dropped back to the command line.
      Now you can view your key information by typing <command>gpg
      --list-keys</command>.  You should see something similar to this:
      <example id="gpg-list-keys">
    <title>GPG Listing Keys</title>
    <para>
      /home/bob/.gnupg/pubring.gpg
      ----------------------------
      pub 1024D/32j38dk2 2001-06-20 bob &lt;bob@bob.com&gt;
      sub 1024g/289sklj3 2001-06-20 [expires: 2002-11-14]
    </para>
      </example>
      You'll now need to upload your public key to a keyserver, so that your
      friends can use your key.  You'll need to know the ID of your key, which
      is after the 1024D on the line beginning with pub.  For this example, it
      is 32j38dk2.  You now type in <command>gpg --send-keys --keyserver
      wwwkeys.pgp.net 32j38dk2</command>.  Substitute your key ID for 32j38dk2.
      You will be prompted to type in your password <!-- verify that you need to
      enter your password here --> and your key will be uploaded for your
      friends to download.
    </para>
  </sect1>
  <sect1 id="encrypt-evo-integ">
    <title>Setting up Evolution's Encryption</title>
    <para>
      You'll need to open
      <menuchoice>
    <guimenu>Tools</guimenu>
    <guimenuitem>Mail Settings</guimenuitem>
      </menuchoice>
     Once there, select the account you'd like to associate the key to and click
     the <guibutton>Edit</guibutton> button.  In the
     <guilabel>Security</guilabel> tab is a section labeled <guilabel>Pretty
     Goog Privacy</guilabel>.  Enter your key ID and click
     <guibutton>OK</guibutton>.  Your key is now integrated into your identity
     in <application>Evolution</application>.
    </para>
  </sect1>
  <sect1 id="encrypt-sending">
    <title>Sending Encrypted Messages</title>
    <para>
      You can either sign or encrypt a message.  When you sign a message, verify
      that you were the one who sent it, and that no one is forging your
      identity.  Encrypting a message makes it impossible for someone with
      prying eyes to view it while it's in tranmission.
    </para>
    <para>
      <sect2 id="sign-msg">
    <title>Signing a Message</title>
    <para>
      To sign a message, you simply click
      <menuchoice>
        <guimenu>Security</guimenu>
        <guimenuitem>PGP Sign</guimenuitem>
      </menuchoice>
      .  You will be prompted for your PGP password.  Once you enter it,
      click <guibutton>OK</guibutton> and your message will be signed.
    </para>
      </sect2>
      <sect2 id="encrypt-msg">
    <title>Encrypting a Message</title>
    <para>
      Encrypting a message is very similar to signing a message.  You simply
      click the menu item 
      <menuchoice>
        <guimenu>Security</guimenu>
        <guimenuitem>PGP Encrypt</guimenuitem>
      </menuchoice>
    </para>
      </sect2>
    </para>
  </sect1>
  <sect1 id="unencrypting">
    <title>Unencrypting a Recieved Message</title>
    <para>
      Sometimes, a friend will send you a message which is encrypted.  In order
      for you to read it, you need to unencrypt it.
    </para>
    <para>
      When you view the encrypted message, <application>Evolution</application>
      will prompt you for your PGP password.  You type in your PGP password and
      the message is then decrypted.
    </para>
  </sect1>
  </article>