Can Protonmail import dsa1024 keys?

I have a public key sent by a friend. It’s dsa1024. I have imported this key into gpg and can encrypt messages with it. But, when I try to upload it to Protonmail for his contact, I get a message that it’s not a valid PGP key.

I can successfully upload other keys for other contacts. Here’s the result of gpg -k (with fingerprint and email obscured).

pub   dsa1024 2003-12-09 [SCA] [expires: 2021-06-06]       5----------------------------------------4 uid           [ unknown] ---------- <---@---.net> uid           [ unknown] ---------- <------@-------.com> sub   elg4096 2003-12-09 [E] [expires: 2021-06-06] 

Does Protonmail not support DSA 1024? Could I be doing something else wrong?

Can protonmail access my passwords and hence my secrets?

protonmail provides encrypted “zero-access” encryption mailboxes. The way they explain “zero-access” is, at least for me, similar to zero-knowledge encryption. However protonmail has in its servers my private keys. They say that the keys are encrypted as well, but they also have in their servers my password for that encryption. Therefore, it seems to me that protonmail could at any time access my private keys and my mailbox.

Is this correct, or am I missing something? Is this the reason why they do not call it zero-knowledge encryption?

How is plaintext handled at protonmail server?

I am quite happy with, indeed grateful for, protonmail. There is one point I’d like to understand better regarding end-to-end encryption. I asked this twice at protonmail.com, and twice it was removed by the moderator. I hope someone here can answer.

I infer that an outgoing message is transmitted via https to the protonmail server where it is pgp-encrypted and the plaintext discarded; the reverse for incoming messages. Is this basically correct?

If so, then “end-to-end encryption” doesn’t mean quite what I thought, and I would like to know a little more about how the plaintext is handled by the server.

I don’t distrust protonmail. I understand that if I felt the need I could download public and private keys and encrypt locally, but then I might as well use gmail :p

Does google have access to all information on a Protonmail android app?

Gmail reads my emails so Protonmail becomes more appealing to me. It is more secure, is open source and they do not read your emails or give away your information to third parties. But, Protonmail also has an android app.
Now, if I install the app on an android device and log in, can Google steal my login credentials and spy on my E-mails from there?

DMARC on ProtonMail custom domain

I began using ProtonMail email service, I like it that much, that I connected my domain yesterday and did appropriate changes to DNS.

This page of ProtonMail’s knowledgebase says how DMARC shall be set up. An image for the words:

ProtonMail's knowledgebase says how DMARC shall be set up

I have successfully connected my domain, set up SPF, DKIM, and I believe I’m ready for DMARC.

The thing is:

  1. I am unsure if it’s a good idea to set it with

    • p=quarantine

    or

    • p=reject
  2. Do I need to specify any other things like rua or ruf or anything else if I wanted to make it p=reject?


My current status is:

current status

ProtonMail bridge installation for a newbie

Just installed Ubuntu 18.10 two weeks a go and it’s my first Linux distro. Everything’s working fine and I want to start playing with the terminal.

So I want to install this still in beta ProtonMail bridge for Thunderbird and the instructions are asking me to copy this :

sudo mkdir -p /usr/share/debsig/keyrings/E2C75D68E6234B07 sudo gpg --dearmor --output /usr/share/debsig/keyrings   /E2C75D68E6234B07/debsig.gpg bridge_pubkey.gpg 

Problem is that I always get this response :

gpg: WARNING: unsafe ownership on homedir '/home/ulfberht/.gnupg' gpg: can't open 'bridge_pubkey.gpg': No such file or directory gpg: dearmoring failed: No such file or directory 

Other information that might help you understand my problem, I tried :

ls /usr/share/debsig/keyrings/ and it gives me “E2C75D68E6234B07” correctly

I have installed debsig

bridge_pubkey.gpg is a document I have in my documents folder

As a sign of gratitude, here’s the latest links to the linux bridge :

Deb: https://protonmail.com/download/protonmail-bridge_1.1.0-1_amd64.deb
RPM: https://protonmail.com/download/protonmail-bridge-1.1.0-1.x86_64.rpm

Thanks in advance!