cryptobot-email
cryptobot-email copied to clipboard
EFForg
To ensure the privacy of OpenPGPBot users we should delete responses that end up in the sent folder.
``` Traceback (most recent call last): File "./bot.py", line 777, in main(fingerprint) File "./bot.py", line 725, in main messages = fetcher.get_all_mail() File "./bot.py", line 310, in get_all_mail return self.get_imap_mail() File...
If Cryptobot can't decrypt an incoming message, it doesn't actually know whether the user did other things right or wrong. So I think it shouldn't make any other claims about...
I deliberately sent Cryptobot a message that was encrypted with a key that Cryptobot didn't have (intentionally using the wrong public key to encrypt). I got back You're not using...
I sent a signed message without having sent Cryptobot a copy of my key. I got WARNING: Your email was not signed. [...] GOOD: Your email was encrypted. [...] WARNING:...
Cause who even reads more than 140 chars at a time any more? Like https://www.youtube.com/watch?v=Rt4MFkbr6co, but maybe a little slower and more explainy.
Currently when bot.py looks for it's own key it matches very strictly against the configured name and email: ``` expected_uid = '{0} '.format(config.PGP_NAME, config.PGP_EMAIL) fingerprint = gpg.has_secret_key_with_uid(expected_uid) ``` If I...
We need this because otherwise we end up hardwiring storage locations.
There should be another key on the keyserver, that _looks_ like it's cryptobots, but doesn't have the same fingerprint. For extra points, the fingerprint should end with a few similar...
Currently, it depends on mail messages files ending in 'openpgpbot' which seems an odd constraint.