So this why the EFF is recommending this
https://www.eff.org/deeplinks/2018/05/disabling-pgp-thunderbird-enigmail

On Mon, May 14, 2018 at 1:24 PM, der.hans <PLUGd@lufthans.com> wrote:

> moin moin,
>
> lots of news about "new" PGP and S/MIME handling security issues.
>
> Considering GnuPG addressed it 15 years ago, it doesn't seem to be new :)
>
> Also, email clients automatically displaying remote content has never
> been safe.
>
> Summary seems to be:
>
> 1. Using text mail rather than html mail mitigates one of the disclosed
> issues.
>
> 2. Disabling old ciphers or having a mail client that properly handles
> decryption warnings and/or sanitizes messages will work for the other.
>
> See mailpile's response for the latter.
>
> https://lists.gnupg.org/pipermail/gnupg-users/2018-May/060315.html
>
> https://www.mailpile.is/blog/2018-05-14_PGP_Security_Alert.html
>
> One good thing to come out of this is that I now know about mailpile :)
>
> ciao,
>
> der.hans
> --
> #  https://www.LuftHans.com   https://www.PhxLinux.org
> #  Eternal vigilance is the price of liberty. -- Thomas Jefferson
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.phxlinux.org/mailman/listinfo/plug-discuss