|This document is available in: English ChineseGB Deutsch Francais Indonesian Turkce
About the author:
Involved in GNU/Linux for a while, I'm now running a Debian system. Despite electronic studies, I've mostly done a french translation work for the GNU/Linux community available on Iznogood-Factory.
Checking gpg mail signatures with Sylpheed-Claws
I will try to show how to install a gpg plugin and check a mail
signature within Sylpheed-Claws using some bash pipes commands.
I received an email from a friend who ask me : "Why have you send me a email with a virus program attached ?" Huuu! Someone had caught my email address and sent him a email with my address... He was lucky because the virus was detected. But what would have happened if there was only a date for a meeting in a town, 150 kms far from his house, as we are used to do... or a patch for a program under development. It would be a bad day!
From this time I always sign my emails. And I verify the email signature when the email have one. One more security against intruders. But sometimes, I receive a email from a new person with an gpg signature I haven't yet checked. Since I'm a very lazy guy and I don't want to open a xterm, write the gpg command to have the public key on my computer and then verify the signature for each new email address. That's why I have done it as an action in Sylpheed-Claws.
apt-get install sylpheed-claws sylpheed-claws-plugins sylpheed-claws-pgpmime gpgTo make it working, you need to go to Configuration -> Plugins then Load Plugin named pgpmime.so as shown on the images (of course, you can choose some others plugins to help you using Sylpheed-Claws).
Then, go to Preferences in the Configuration menu. On the left you have Confidentiality -> GPG. Clicking on it will show 4 check boxes. You need to quote at least the first one (Automatic signature check). Check your messages. The others are intersting if you sign yours messages: the second keep your passphrase in memory during the session, the third gives the focus on the keyboard and the last one warns you if gpg doesn't work.If there is one with a signature, you will see a logo on the right of the message body:
In Sylpheed-Claws, you can do actions with Tools -> Actions when you
are on the email you want to check.
But, first, you must program it in Configuration -> Actions. You open it:
On menu name, you put the command name (you can choose the one you wan) and the command in Command (very difficult!) and you Add it. Here is the command piped to do the gpg check:
ID=`cat %f | grep "From" | grep "<" | grep ">" | cut -f2 -d\< | cut -f1 -d\> `; xterm -e gpg --keyserver wwwkeys.ch.pgp.net --search-key $IDin one line. The normal gpg command is :
gpg --keyserver servername --search-key email-addresswith sylpheed-claws, we open it in a xterm with "xterm -e" because we always need to choose one name option. To have the email-address, the $ID:
Webpages maintained by the LinuxFocus Editor team
"some rights reserved" see linuxfocus.org/license/
2005-04-08, generated by lfparser version 2.52