[Koha-bugs] [Bug 8897] Optional GnuPG encryption of outgoing emails

[bugzilla-daemon at bugs.koha-community.org]

http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=8897

--- Comment #13 from Robin Sheat <robin at catalyst.net.nz> ---
I don't think you could use a JS library for this unless you ran the JS
server-side. You can't send an email to their browser, have it encrypt it, and
send it back.

As for the passphrase stuff, you definitely can encrypt without a passphrase:
$ gpg -a --encrypt --trust-model always -r 4BE030B3
This is a message.
-----BEGIN PGP MESSAGE-----
Version: GnuPG v1.4.12 (GNU/Linux)

hQIOA07aRfuO76ueEAgAnjpAVlVtyfOpEUSest9ESwNDkwANu6DGNBEygkClBmDj
ACCU22Yx8IIgV6zPfnT0W4rfndR3oUpel9mBnmGOFLKHPEY+FlZbCXtzHj6jqMGA
...

You could have the server having its own passphrase if you wanted to sign
things, but I'd consider that a less important thing, at least initially.

I think as libraries tend to be fairly privacy-minded, this is something that
they probably don't know they want. It's also a good argument against other
software, "unlike that one, Koha really cares about user's privacy!" :)

-- 
You are receiving this mail because:
You are watching all bug changes.