Posted January 27Jan 27 What is this topic about?Our email server has the option of adding at-rest encryption with S/MIME or OpenPGP.It is not enabled by defaultWhat do you recommend?I recommend you enable this option! You will need to generate a OpenPGP key or have a S/MIME certificate.How does this work?All new emails on the server going to your account become encrypted at rest, meaning that nobody without your key will be able to read them.Don’t lose your key!We cannot decrypt the emails for you. If you lose your key, you lose your emails. Period.Email ClientsSome email clients support encryption, including Mozilla Thunderbird and Canary. Apples email client on MacOS (not iOS) also supports encryption, provided you use the GPGSuite extension. Linux email clients such as KMail and Evolution should also support encrypted emails.Webmail ClientOur webmail client also supports reading encrypted emails. Although, I really don’t recommend using this for reading encrypted emails from a security perspective. Because it’s a shared email client based on PHP. And even though roundcube has been tested extensively, it can still be hacked.It’s far safer for you to use your local email client. This is especially true if you are dealing with sensitive emails.
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.