v 0.6 - Secure Encrypting Email Client

Robert J. Hansen rjh at
Wed Nov 6 23:17:49 CET 2013

> can as a p2p email tool for encrypted Email (and  
> hybrid with IMAP-Email) be regarded as a reference model for  
> research to create a secure Email Client? as it uses both, gnupg and  
> openssl!

I would suggest figuring out very precisely what you intend by  
"secure."  Once you have that definition, look at the BitMail project  
and see if their notion of "secure" has a lot in common with your  
notion.  If they do, then it's time to take a look at the design of  
BitMail and its implementation.  Look for areas where they do not  
closely follow their definition of 'security'.  Every nontrivial  
program has some of these areas.

Once you have a good idea of how BitMail works, then it will be time  
to learn from their mistakes.  In the process you will undoubtedly  
make mistakes of your own.  Don't be disheartened: the only hackers  
who have not made completely humiliating errors are ones who have not  
been programming long.  The trick is to never make the same one twice.  

More information about the Gnupg-users mailing list