Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
Trac
Trac
  • Project overview
    • Project overview
    • Details
    • Activity
  • Issues 246
    • Issues 246
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Operations
    • Operations
    • Metrics
    • Incidents
  • Analytics
    • Analytics
    • Value Stream
  • Wiki
    • Wiki
  • Members
    • Members
  • Collapse sidebar
  • Activity
  • Create a new issue
  • Issue Boards

GitLab is used only for code review, issue tracking and project management. Canonical locations for source code are still https://gitweb.torproject.org/ https://git.torproject.org/ and git-rw.torproject.org.

  • Legacy
  • TracTrac
  • Issues
  • #21880

Closed
Open
Opened Apr 06, 2017 by cypherpunks@cypherpunks

Protected E-mail Headers (Enigmail)

Enigmail allows the encryption of the subject line, References, etc. for PGP/MIME-Messages (The orginal subject line becomes part of the encrypted MIME-part). This feature is already build in an can be enabled by setting the following options in Thunderbird's about:config.

extensions.enigmail.protectHeaders true Protect sensitive headers of encrypted messages, such as the subject. The original header is moved into the encrypted message and replaced by a dummy value (such as "Encrypted Message"). This is part of the Memory Hole standard that is currently being developed.

extensions.enigmail.protectedSubjectText Encrypted Message Text to use as replacement for the subject, following the Memory Hole standard. If nothing is defined, then "Encrypted Message" is used. [1] (Remark: if not set, "Encrypted Message" might be translated)

This feature is not unique to Enigmmail and has been implemented to other platforms but unfortunately it's not that wide-spread [2] either. That means, that in the worst case, the other side will just see "Encrypted Message" as subject line---but that seems to me a rather small trade-off.

[1] https://enigmail.wiki/Advanced_Operations [2] https://github.com/ModernPGP/memoryhole

To upload designs, you'll need to enable LFS and have admin enable hashed storage. More information
Assignee
Assign to
None
Milestone
None
Assign milestone
Time tracking
None
Due date
None
Reference: legacy/trac#21880