From b91750372fe0963e3df3c89528d10182d22e2c18 Mon Sep 17 00:00:00 2001
From: Vincent Breitmoser
We require explicit consent to distribute identity information. - Identities that aren't e-mail addresses, such as pictures or website + Identities that aren't email addresses, such as pictures or website URLs, offer no simple way for us to acquire this consent.
Note: Some OpenPGP software creates keys with incorrectly formatted - e-mail addresses. These addresses might not be recognized correctly on + email addresses. These addresses might not be recognized correctly on keys.openpgp.org.
- An e-mail address can only be associated with a single key. + An email address can only be associated with a single key. When an address is verified for a new key, it will no longer appear in any key for which it was previously verified. @@ -70,16 +70,16 @@
- This means a search by e-mail address + This means a search by email address will only return a single key, not multiple candidates. This eliminates an impossible choice for the user ("Which key is the right one?"), - and makes key discovery by e-mail much more convenient. + and makes key discovery by email much more convenient.
We use a modern standard called @@ -87,14 +87,14 @@ combined with STARTTLS Everywhere by the EFF, - to make sure verification e-mails are sent out securely. + to make sure verification emails are sent out securely. This protects against eavesdropping and interception during delivery.
- The MTA-STS mechanism depends on correctly configured e-mail servers. + The MTA-STS mechanism depends on correctly configured email servers. You can run this test - to see if your e-mail provider supports it. + to see if your email provider supports it. If the "MTA-STS" entry on the left isn't a green checkmark, please ask your provider to update their configuration.
@@ -189,7 +189,7 @@At the time of writing, - more than 70.000 e-mail addresses + more than 70.000 email addresses have been verified.
One improvement that deserves special mention is MTA-STS, - which improves the security of outgoing e-mails. + which improves the security of outgoing emails.
While HTTPS is deployed fairly universally these days, - that sadly isn't the case for E-Mail. + that sadly isn't the case for email. Many servers don't do encryption at all, or use a self-signed certificate instead of a proper one (e.g. from Let's Encrypt). @@ -121,7 +121,7 @@
You can run a check - to find out whether your e-mail provider + to find out whether your email provider supports MTA-STS. If they don't, please drop them a message and tell them @@ -139,7 +139,7 @@ To make this service more accessible, we are working with the OTF's Localization Lab - to make the website and outgoing e-mails + to make the website and outgoing emails available in several more languages.
@@ -199,7 +199,7 @@
- If a new key is verified for some e-mail address, + If a new key is verified for some email address, it will replace the previous one. This way, - every e-mail address is only associated with a single key at most. + every email address is only associated with a single key at most. It can also be removed from the listing at any time by the owner of the address. This is very useful for key discovery: - if a search by e-mail address returns a key, + if a search by email address returns a key, it means this is the single key - that is currently valid for the searched e-mail address. + that is currently valid for the searched email address.
E-Mail addresses contained in User
+ Email addresses contained in User
IDs are personally identifiable information (PII).
Special care is taken to make sure they are used only with
consent:
@@ -16,9 +16,9 @@
Publishing requires double
opt-in validation, to prove ownership of the
- e-mail address in question.
+ email address in question.
An OpenPGP key may contain personal data other than E-Mail +
An OpenPGP key may contain personal data other than email addresses, such as User IDs - that do not contain E-Mail addresses, or image attributes. This data is stripped during upload and never stored, processed, or distributed in any way. diff --git a/templates-untranslated/about/stats.html.hbs b/templates-untranslated/about/stats.html.hbs index 0b8a9b3..d860e80 100644 --- a/templates-untranslated/about/stats.html.hbs +++ b/templates-untranslated/about/stats.html.hbs @@ -1,10 +1,10 @@
- A simple statistic of the total number of e-mail addresses that are currently verified. 📈 + A simple statistic of the total number of email addresses that are currently verified. 📈
diff --git a/templates-untranslated/about/usage.html.hbs b/templates-untranslated/about/usage.html.hbs index 4a7cbdb..798b28a 100644 --- a/templates-untranslated/about/usage.html.hbs +++ b/templates-untranslated/about/usage.html.hbs @@ -23,7 +23,7 @@
- Note that there is no built-in support for upload and e-mail verification so far. + Note that there is no built-in support for upload and email verification so far.
Keys can be uploaded with GnuPG's --send-keys command, but identity information can't be verified that way to make the key - searchable by e-mail address (what's that?). + searchable by email address (what's that?).