Apparently there's a rather critical security flaw in how automatic decryption of PGP and S/MIME emails works, and EFF just recommended nobody send or read PGP email anymore until it's fixed:

@raucao That's mostly fearmongering.

If you allow your email client to download remote content, you're in danger, always were and always will be. If not, you're safe with GnuPG.

@tastytea Ugh, I thought it was a bit strange tbh. Especially with that massive one recommendation of "let's all use Signal instead".

Sign in to participate in the conversation

A friendly place for tooting. Run by the Kosmos peeps.