On Mon, 11 Jan 2016 23:46, neal(_at_)walfield(_dot_)org said:
There are two types of re-encryption that I think are inappropriate:
- when the mailing list software decrypts and reencrypts each
message before forwarding it on to the list of subscriber, and,
As soon as you are in the need for a mailing list you have severe opsec
problems which I consider not solvable: You not only need to fully trust
all participants but also need to make sure that _all_ their boxes are
properly secured against attacks.
Adding another box to reencrypt the messages does not change the picture
much more than adding another subscriber.
I heard that Schleuder (schleuder.nadir.org or apt-get install schleuder)
is a matured tool for encrypted group communication.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp