./security/opmsg [a replacement for gpg which can encrypt/sign/verify]
[+] Add this package to your ports tracker

[ CVSweb ] [ Homepage ] [ RSS feed ]

Version: 1.78s, Package name: opmsg-1.78s
Maintained by: The OpenBSD ports mailing-list
Master sites:
opmsg is a replacement for gpg which can encrypt/sign/verify your mails or
create/verify detached signatures of local files. Even though the opmsg output
looks similar, the concept is entirely different.


- Perfect Forward Secrecy (PFS) by means of ECDH or DH Kex
- native EC or RSA fallback if no (EC)DH keys left
- fully compliant to existing SMTP/IMAP/POP etc. standards; no need to touch
any mail daemon/client/agent code
- signing messages is mandatory
- OTR-like deniable signatures if demanded
- easy creation and throw-away of ids
- support for 1:1 key bindings to auto-select source key per destination
- adds the possibility to (re-)route messages different from mail address to
defeat meta data collection
- configurable, well-established hash and crypto algorithms and key lengths
(RSA, DH, ECC, AES, Chacha)
- straight forward and open key storage, basically also managable via cat,
shred -u and ls on the cmdline
- seamless mutt integration
- Key format suitable for easy use with QR-codes
- optional cross-domain ECDH Kex

opmsg builds fine with any of the OpenSSL, LibreSSL and BoringSSL libcrypto
libraries. Building against BoringSSL is not recommended due to missing
blowfish and ripemd algorithms.

Filesize: 69.036 KB
Version History (View Complete History)
  • (2018-04-03) Package added to openports.se, version opmsg-1.78s (created)
[show/hide] View available PLISTS (Can be a lot of data)

CVS Commit History:

   2021-01-16 10:26:17 by Aaron Bieber | Files touched by this commit (17)
Log message:
Drop MAINTAINER for a bunch of stuff I no longer use.
   2019-07-12 14:49:09 by Stuart Henderson | Files touched by this commit (854)
Log message:
   2018-11-20 06:01:08 by Jeremie Courreges-Anglas | Files touched by this commit (2)
Log message:
LibreSSL and packaging tweaks
- don't force-disable the use of BN_GENCB_new() and friends, supported
since LibreSSL 2.7.1
- fix WANTLIB, this is c++
- provide a correct WRKDIST, and use it
- install README.md, it has useful data
ok abieber@ (maintainer)