Hey, when I try to encrypt a mail with a key that I did not sign yet, I cant select the key in the menu. It is marked red also. Why is that? I think it is not intendet to sign every key that I use for encryption right?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
In OpenPGP (the way GnuPG has implemented things) being able to use a key is a matter of trust. Signing a key is a way to achieve this. Alternatively, you can enable the option "always trust people's keys" -- which you seem to have disabled.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Ah thank you I didn't know that it was neccessary to choose this option. I still don't get why I have to "trust" every key in order to send encrypted data but okay, what ever :) Does this option have any other effects than enabling encryption?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Please read about trust between gnupg keys, especially about the "web-of-trust" and "man-in-the-middle attacks". There is a lot of stuff out on the net. You'll soon see that setting the option of "always trust people's keys" is an uncomfortable workaround for the missing linkage of your key(s) to those of at least some of your mail partners by mutual signatures on each other.
Setting this option makes that gnupg will not complain about missing trust and encrypts the message, even if it is not sure that the key it encrypts to really belongs to the intended recipient.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hey, when I try to encrypt a mail with a key that I did not sign yet, I cant select the key in the menu. It is marked red also. Why is that? I think it is not intendet to sign every key that I use for encryption right?
In OpenPGP (the way GnuPG has implemented things) being able to use a key is a matter of trust. Signing a key is a way to achieve this. Alternatively, you can enable the option "always trust people's keys" -- which you seem to have disabled.
Ah thank you I didn't know that it was neccessary to choose this option. I still don't get why I have to "trust" every key in order to send encrypted data but okay, what ever :) Does this option have any other effects than enabling encryption?
Please read about trust between gnupg keys, especially about the "web-of-trust" and "man-in-the-middle attacks". There is a lot of stuff out on the net. You'll soon see that setting the option of "always trust people's keys" is an uncomfortable workaround for the missing linkage of your key(s) to those of at least some of your mail partners by mutual signatures on each other.
Setting this option makes that gnupg will not complain about missing trust and encrypts the message, even if it is not sure that the key it encrypts to really belongs to the intended recipient.