Fun weekend project to increase public facing #opsec:
Using OpenPGP.js to encrypt contact form messages client-side, thus being able to receive end-to-end encrypted messages even from strangers who've never heard of PGP:
If you want to do the same and are not a developer, this services makes it easy: https://encrypt.to
@mayel Forgive my ignorance, but doesn't HTTPS achieve the same goal, assuming the contact form is on a HTTPS secured website?
No, the contents would be encrypted between the sender and the server, but then might be sent unencrypted between (one or more) email servers, and might be stored unencrypted by your email provider.
@mayel @Graham_Mitchell @Argus for a simple and powerful explanation of why encryption needs to be end-to-end (encrypted and decrypted on the client end):
social.coop is a a coop-run corner of the fediverse, a cooperative and transparent approach to operating a social platform. We are currently closed to new memberships while we improve our internal processes and policies, and plan to re-open to new folks when that work is complete. [9/2/2018]