Note: You are viewing an old revision of this page. View the current version.

I created this page to discuss how to set up gpg with various mail clients (MUA) moving this discussion from the GPG/PGPNotes page which was getting a little unwieldy.


Easy Peasy! Tools --> Mail Settings. Edit your account. Click on the "security" tab, and Enter your key id. Then simply tick the box that says "Always sign outgoing mail when using this account". Alternatively, leave it off, and sign on a case-by-case basis, using the "security" menu when composing a new message.


For all you kmail users who are having trouble getting gpg/pgp to work:

Direct quote from a mighty useful gpg related page

"To set things up so you can sign and decrypt messages, you have to enter your GnuPG user ID in the 'Identity' section of the Kmail configuration. When you send a new message, the message will not be signed or encrypted by default. You have to check the 'Sign message' and 'Encrypt message' buttons in the tool bar." (These are the icons to the right of the toolbar (by default) of a pen signing a signature & a lock respectively).

Keep in mind that you don't actually need to encrypt it, and often merely signing it will suffice (unless of course theres something you need to hide, or are just generally paranoid.)

Mozilla -- EnigMail

Download Enigmail, a plugin for Mozilla/Netscape here.

Enigmail is pretty easy to configure under linux - install it, tell it which keyid to use, and it works. It doesn't save your passphrase, and by default remembers it only for 5 minutes, so you may wish to tweak this. By default it will sign outgoing mail, but you can change teh default action, and when you email you can choose an option under the new EnigMail menu bar for 'default', 'signed', 'encrypted', 'signed + encrypted' sends.

When Enigmail finds a key it doesn't know about, it downloads it for you then tells you that its an unverified key.


Mutt comes with gpg/pgp support by default - you do not have to do anything special after creating your keys. You can select to sign or encrypt or both a message from the send menu by pgp menu, then sign, encrypt or both

Some options you might want to set to do this by default

set pgp_autosign yes

Always sign outgoing messages by default

set pgp_replysign yes

Sign replies to signed messages

set pgp_replysignencrypted yes

If you want to check other people's messages (check they are signed/encrypted "correctly") then the command is "check-traditional-pgp", which is bound to Esc-P (capital P) by default from the message list view.

If you see

unable to create PGP subprocess! --? -----END PGP SIGNATURE-----

then mutt could not find gpg.


GPG Plugin for Outlook Express

Don't forget to configure the .reg file and tell it where your keys and GPG executable are kept.

Part of CategorySecurity