tech, efail, gpg / pgp Show more
So as I suspected seeing the original EFF notice this whole 'Efail' kerfuffle is an issue with bad implementations in various mail clients/plugins and nothing to do at all with the actual PGP spec, that's had mitigation for the attack in question since *2000*.
Apparently K-9 for Android indeed does what it's supposed to, so really I just get to disable Enigmail until they patch in *actually listening for the error*.
Oh, right, and keeping HTML mail disabled. Duh.