Setting up Encrypted Email

In order to use this encrypted email workflow, you need to:

  1. Provide your public key to the support server
  2. Import the server’s public key into your local GPG keyring.

The following documentation explains how to perform these steps to get the encrypted email workflow working. This documentation assumes you are familiar with PGP/GPG. We encourage you to use your preferred GPG key management tool and email client.

If you do not know how to do things like import and export GPG keys, the encrypted email workflow is not for you. We recommend you stick to the web-based workflow.

Providing your public key

Start by navigating to support.freedom.press/pgp or click on the “PGP” menu option in the upper right corner of the support window.

PGPMenu

In the PGP management window you will see two columns: one for your public key on the left, and one with the server’s public key on the right.

PGPUpload

To provide your public key, start by exporting an ASCII-armored copy of your public key. Paste your armored public key into the empty text box on the left and hit Save.

PGPSave

Importing the server’s public key

Now, import the public key for our Redmine server into your local GPG keyring. It is available on the right hand side of the page in the column with the heading “Redmine Server (support@freedom.press)”, in the text box labeled “Public PGP key”.

Select the entire public key and copy it to your clipboard. Import the copied public key into your local GPG keyring.

You can download the key or fetch it from a keyserver (fingerprint: D0E0B2F2B71BA4E48278037D9EA33029E9FBBA2E).

Todo

Add section on testing encrypted email after setting it up