How to : Secure Email Using SSL and PGP

Article Id: 157858

Status: Published

Updated On: 27-06-2014 15:40

Legacy Id: TECH204608

Products:

Symantec Products

Issue/Introduction:

How to Secure Email Using SSL and PGP

Resolution:

If you have the Public key of the receiver of your email you can encrypt the emails for him and by default the PGP Desktop will work for you without any changes to the email client you use. Ports used by PGP are 25 for SMTP and port 110 for POP emails sent through the SMTP-25 port are encrypted by PGP if the recipient’s public key is found; if not found then the email is sent in clear text as the rule suggest. If your email client use different port number other than SMTP – 25 then the emails are not encrypted by PGP as it tracks the port 25. Even if the emails are encrypted by the SSL certificates by email client and then passed to PGP still it does not recognize the message and encrypts it again. Solution here is to configure the email client for sending emails through port25 and here the PGP desktop will communicate to SMTP server through SSL/TSL secure tunnel.

Settings on email client :

Go to Internet email settings type in user and server information click <more settings> Click Advanced tab

use port 110 for (POP3) Incoming server - here decryption of email is done.

use port 25 for Outgoing server (SMTP) - here encryption of email is done.

Now, use SMTP proxy settings for SSL as below :

Go to PGP Desktop PGP Messaging click on Server Settings

For Incoming and Outgoing Mail Server select “Require SSL” and make sure you select port 465 for SMTP using server name in names field. Now the email connection uses 128-bit SSL encryption which is very secure as your HTTPS:// connection.

Applies To

PGP Desktop on windows OS

PGP email encryption enabled

SSL certificate