How can clients easily and securely send me passwords? [closed]

security email passwords encryption

Solution 1:

Your idea of a web-based messaging system could be implemented in a few dozen lines of HTML and PHP (mostly html) on any system that had an SSL web server and GPG installed. It’s really just a very simple but specialised formmail type program. You could even hack an existing formmail CGI script to insert a call to GPG (assuming one doesn’t already exist, try Googling for formmail + GPG)

  • If you haven’t already done so, install gpg on your workstation and create your public & private keys
  • Create a php page that displays a form to accept a message (text field), encrypts it with gpg using your public key, and emails it to you. Hard-code your email address in the script (i.E don’t allow the sender to specify who to send to)
  • Install the php page on an existing ssl server or create one just for the task. A self-signed cert is good enough for this job.
  • Tell your client the url when you need them to send you a login and password.

Btw, thunderbird has the Enigmail plugin which makes using GPG encryption very easy. But it’s still probably too much trouble for casual users.

Solution 2:

PGP is popular.

You can also try the tried and true method of a meeting at a pond, preferably with both of you wearing trench coats.

Related

Office Word. How to open the same document in separate windows?
How can I make the bash backtick operator keep newlines in output?
What is the benefit of copy over xcopy on the command line?
"Create new text document" option missing from context menu
How to extract part of a string in Windows batch file?
Bash autocomplete like zsh
How to make Alsa pick a preferred sound device automatically?
"undefined reference to" errors when linking static C library with C++ code
Parsing "relaxed" JSON without eval
Why is JSON invalid if an integer begins with a leading zero?
Examples of SQL Injections through addslashes()?
The name 'controlname' does not exist in the current context