Thunderbird and OpenPGP - Autocrypt
holger at merlinux.eu
Sun Dec 8 01:02:31 UTC 2019
On Sat, Dec 07, 2019 at 22:18 +0100, Kai Engert wrote:
> On 05.12.19 15:38, holger krekel wrote:
> >no one has been able to quote me *a single real-life instance*
> >of an e-mail provider actively exchanging PGP keys in transit.
> If a key change is silently accepted, how does the victim notice the attack?
> If the victim doesn't notice, you don't get a report about it.
PGP is used by a lot of specialists. Chances are that
over the last two decades, and with MITMs actually happening,
some people would have noticed because they verify keys,
meet at a crypto-party etc.
More information about the tb-planning