Anonymous Monk has asked for the wisdom of the Perl Monks concerning the following question:

How would I send use sendmail to send encrypted email?

Replies are listed 'Best First'.
Re: email encryption
by ferrency (Deacon) on Aug 03, 2000 at 20:59 UTC
    Sendmail alone can't send encrypted email. You need to use another tool to encrypt the email, and then send it using sendmail (or some other means). Typical packages used to encrypt email before sending include pgp (a for-pay product) and gpg (gnupg, an open source version of pgp).

    If you're doing batch processing, you can either have perl open a pipe to pgp or gpg, or use the GnuPG modules (which can be found in CPAN) to interface gpg through perl.

    If you're just trying to read and send encrypted mail as an end user, both gpg and pgp have some hooks into common mail clients.

    Alan

[reply]
RE: e-mail encryption
by Nitsuj (Hermit) on Aug 03, 2000 at 21:34 UTC
    Sendmail doesn't encrypt email. Much as the name implies it sends mail... Encryption is entirely different in nature and in subject than sending e-mail is. To send an encrypted e-mail, there are 2 obvious steps.

    1) Encrypt it.
    2) Send it.


    Ok, since your question is really more on the first, lets go ahead and answer it. There are many forms of encryption. There are many forms of encryption applicable to e-mail. There is one popular form of encryption that everyone has, that everyone recognizes, and that everyone uses. That is, everyone who encrypts their e-mail, and actually has a hand in deciding the technologies used and knows about them and such (IE, supposing AOL added "user friendly" encryption technology to their e-mail system, the users probably wouldn't consciously be doing much with it). That said. This form is PGP. There is also GPG, which is newer, and popular in the GPL community, but lets face it, not ALL of us here are part of that community. So, we'll focus on PGP. PGP is included with many linux distros, there is always a version that you can pipe through/insert something here/do whatever the heck you will with. There are hundreds of implementations, so you should be able to find one that runs on the platform you want, and that does what you want it to do.

    The easiest way to do this in a perl script, (hence you posting this question to perlmonks), is with the crypt::PGP5 pm. USE this module, encrypt your e-mail with it, and then send as normal. This should be fairly self explainatory. PGP is public key encryption, so you will need to know the other party's public key before encrypting the mail, and you will need a private key to decode your mail. You might consider keeping a database of public keys on your computer, so that you can properly encrypt for all of your users.

    HAVE FUN.

    Just Another Perl Hacker
[reply]

Back to Seekers of Perl Wisdom