1. Forum
  2. Usenet
  3. LINUX.GENTOO.USER

  • Re: [gentoo-user] Seamonkey encryption stopped working, uses same as Th

    From Michael@21:1/5 to All on Mon Jul 7 12:19:48 2025
    On Monday, 7 July 2025 03:07:35 British Summer Time Dale wrote:
    Howdy,

    I have one friend that likes to email with encrypted emails. We have
    good chats so I set up encryption ages ago. It worked for a long time.
    We lost contact for a bit but recently started chatting again. I think during a upgrade the Enigmail encryption was broken. I'm not sure
    when. I've tried every setting I can think of and find and it just
    refuses to work. I might add, I also lost all the accumulated keys that
    I had, including my own keys.

    The Seamonkey email client was working with the Enigmail plugin. Mozilla's Thunderbird now uses a different inbuilt OpenPGP encryption implementation since Thunderbird 78. I understand the RNP encryption tool implementation of Thunderbird has been released by Ribose, a Hong Kong based company.

    You can export your key pair(s) from Enigmail or ~./gnupg and import these in the RNP, but if you have lost them then this won't help you. From what I recall the Enigmail plugin uses the default ~/.gnupg OS keyring, which can encrypt the private key with whatever algo-cipher scheme you select. Enigmail can either use its own OpenPGP.js code to access the keyring, or utilise gnupg since it is already installed in Linux. RNP on the other hand does not use
    the OS gnupg keyring. Instead it uses Mozilla's master password, which itself uses a weak(er) encryption. I don't know if this option was chosen by Mozilla for <aheam!> "... your safety and convenience", or as they claim a licensing issue.


    This is one reason I think something got
    borked during a upgrade. The error I get is this.


    Enigmail Security Info Error - decryption failed Error: Error during
    parsing. This message / key probably does not conform to a valid OpenPGP format.

    Hmm ... I suspect this error is caused because Seamonkey is no longer
    supported by Enigmail - see bottom post here:

    https://sourceforge.net/p/enigmail/forum/support/thread/b0e5a6791d/

    I'm not sure, but I think the error message implies the content of the message is meant to be parsed as a stream of ciphertext and decrypted in chunks according to a more up to date GnuPG security improvements, but your
    Enigmail's OpenPGP.js library can't deal with it:

    https://github.com/openpgpjs/openpgpjs/releases/tag/v4.0.0


    If someone knows of a fix for this, I'm fine with just fixing it.

    Someone more clued up on these technologies could advise, but until wiser
    minds contribute you could:

    1. Use a more up-to-date OpenPGP.js and the hope Enigmail in Seamonkey will function as expected:

    https://github.com/openpgpjs/openpgpjs

    2. Change Enigmail's advanced preferences from using OpenPGP.js to using your Gentoo GnuPG, '/usr/bin/gpg':

    https://enigmail.net/index.php/en/user-manual/advanced-operations

    3. Move to T'bird and put up with its RNP implementation. You can export your key pair with gpg when you find it from ~/.gnupg and import it in RNP.

    4. Use a different mail client which works with OpenPGP.


    If
    not, how do I reset this back to scratch and set up encryption again?

    You can create a new key pair, using Enigmail and forget about your old key pair for now. However, if you stick with Seamonkey-Enigmail and my suggestion in 1. above still does not work, you could run into the same format problem even if you are using a newly created key pair.

    You could try option 2. above to see if using GnuPG as the back end for Enigmail will work with Seamonkey and any old or new keys.


    I
    found the folder /home/dale/.gnupg/ but I'm not sure if I can delete the whole thing, just parts of it, just a single file or I have to do it
    another way.

    Another way - please see above. You do not have to delete old keys to create and start using new key pairs. The old private keys are still necessary if
    you want to access previously encrypted files/messages.

    HTH.
    -----BEGIN PGP SIGNATURE-----

    iQIzBAABCAAdFiEEXqhvaVh2ERicA8Ceseqq9sKVZxkFAmhrrVQACgkQseqq9sKV ZxkWvQ/+NSmqtrfOdWRZ85g0/YHxrlDvlGj3ELX39tdQMpPUbFHIn7sXCwt3iuRZ TxP2pp7bZ89cmPmFfW3AyuFozrC+XNrkPZXz05c7685iA5q81Bhb6qiKShKasadB x/Mn+555lPns76s0TdcJ0wiKDarRp30pDKjTZSCbr/rVirXwz+DoylW4ukV/F/jj g37BJE93eELBWJwjz/zktyGqNkul4rON45vL34vdXUKnbCwY+wNm4we9bcsRPawt yKy50YwOqMi55Nr8dCx0igklNHY+1Blm4KmgfxdecZ0Py4eix5SgdHHPzszvW+eB hEYBnbfOpWsRiTVg9GvUOWJEy4waqhV5BeR63rKZlGDrRjwvE+VmIKcvuRqdUnUG h7W/DCi75X1OuvsqaiOgZ+DTOdu4zb9BxL+2MHmO+EJWwsHyfcu4q4hQkUv9lpRI 8lnMtbLnp1LzlzjIVbCrW+Kb9dga0FKfbAo33fxblSKnTbmkNG0TgPQp15aEpDPh DwRp5vyw8a8rf7mhTSzLneaUzBPAC4ROoQTkeV3xE9NBkgRfemCMJC+8jgk1sy9m mxOMXIlkROCCujH6yTasCORFkv1lT4PkhGQVSZzdU2qPIJigjo4XGYZ66pOSKa7R 0ievFLvso6ufCGO+F9pgwCS/FRG765O75DLLcUyNleaAPdRt3Dc=
    =1mfL
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)