Mayel - ghost account

Fun weekend project to increase public facing :

Using OpenPGP.js to encrypt contact form messages client-side, thus being able to receive end-to-end encrypted messages even from strangers who've never heard of PGP:
mayel.space/contact

If you want to do the same and are not a developer, this services makes it easy: encrypt.to

This should really become standard for every website with a contact form, just like HTTPS is becoming standard.

@mayel Forgive my ignorance, but doesn't HTTPS achieve the same goal, assuming the contact form is on a HTTPS secured website?

@Graham_Mitchell

No, the contents would be encrypted between the sender and the server, but then might be sent unencrypted between (one or more) email servers, and might be stored unencrypted by your email provider.

@Argus @Graham_Mitchell

It depends. Some providers will encrypt at rest, but they hold the key. Protonmail says they encrypt incoming messages with your public key, but you've still got to trust them.

Always best to have end-to-end encryption.

@mayel @Graham_Mitchell @Argus for a simple and powerful explanation of why encryption needs to be end-to-end (encrypted and decrypted on the client end):
freethink.com/shows/coded/seas

@mayel Very cool, is the source available somewhere?

I did a similar small proof-of-concept encryption form but the sending part is delegated to the user: metacode.biz/sandbox/encrypt (definitely not as user-friendly as yours).

@wiktor @mayel

Cheers! :)

Form: https://social.coop/@mayel/100617084649622716
Front-end JS: https://github.com/mayel/mayel.github.io/blob/master/assets/contact-pgp.js

For the back-end you can use anything to receive the form data and send the email (such as a PHP script).
Sign in to participate in the conversation
social.coop

social.coop is a a coop-run corner of the fediverse, a cooperative and transparent approach to operating a social platform. We are currently closed to new memberships while we improve our internal processes and policies, and plan to re-open to new folks when that work is complete. [9/2/2018]