November 29, 2006

How to: WordPress encryption plugin “Subrosa”

Posted in Anleitung, Computer, E-Mail, English, Internet, Kryptografie, Plugin, Software, Thunderbird, WordPress

The WordPress plugin Contact Form ][ has been installed yesterday. Now let's install the plug-in Subrosa. This plug-in enables the contact form to encrypt the message text.

Download the Subrosa plugin

Download the Subrosa plugin Download the Subrosa plugin.

Download subrosa-0.1.tar.gz Press the OK button to save the file subrosa-0.1.tar.gz on your hard disk.

Extract the Subrosa plugin

Extract subrosa-0.1.tar.gz The file subrosa-0.1.tar.gz is now located on the Windows XP desktop.
Extract subrosa-0.1.tar.gz with 7-Zip.

Extract the file CqFoJa.tar And now extract the file CqFoJa.tar.

Folder subrosa has been extracted On the Windows XP desktop, there is now the folder "subrosa".

Installing the Subrosa plugin

Drag and drop folder subrosa Drag and drop the subrosa folder from the Windows XP desktop to the plugins directory located at the remote site.
In the example, the following plug-ins are available:
Akismet, Spam Karma 2, subrosa, wp-contact-form, hello.php, WP-PostViews, and WordPress Database Backup.

Browsing header.php Browsing header.php. Check whether the expression wp_head () is available.

Modifying wp-contactform.php

Open wp-contactform.php with HTML editor Open the file wp-contactform.php (the file is a part of the Contact Form ][ plugin) with Weaverslave.

Examining wp-contactform.php Let’s have a short overview over the file wp-contactform.php. A small change has to be done in line 196. In line 207, there is a similar expression, but do not change that.

Go to line 196 Go to line 196. The expression mail has to be changed.

Change mail into ctsr_mail Change the expression mail into ctsr_mail in line 196.

Don’t change anything in line 207 Don’t change anything in line 207.

Small change in line 196 There has been made a small change in line 196. There hasn’t been any change in the line 207.

Saving modified wp-contactform.phpSave the modified file wp-contactform.php.

Uploading wp-contactform.php

Drag and drop modified wp-contactform.php Drag and drop the modified wp-contactform.php from the Windows XP desktop into the folder wp-contact-form on the remote site.

Replacing wp-contactform.php FileZilla asks whether to replace the already existing file wp-contactform.php with the modified file wp-contactform.php.
Press the OK button.

File wp-contactform.php has been replaced The file wp-contactform.php has been replaced.

Export your public key

Thunderbird - OpenPGP - key management Start Thunderbird with the extension Enigmail.
Go to the menu OpenPGP and select the point for the key management.

Select your own key Select your own key. The key shall be exported.

Don’t export the private key Thunderbird asks whether to export the private key, too. No, don’t export the private key.
Press the No button. Only the public key must be exported.

Saving your public keyYour public key should have the name pubkey.asc.
Press the save button.

Key has been successfully exported The public key has been successfully exported.

Copying pubkey.asc to website

Searching right place for pubkey.asc The question is where to place the file pubkey.asc.
Don’t copy the file pubkey.asc to the wp-contact-form folder.

Is this the right place?Don’t copy the file pubkey.asc into the plugins folder.

Drag-and-drop the file pubkey.asc Drag-and-drop the file pubkey.asc into the subrosa folder.

Activate the Subrosa plugin

Activate the Subrosa plugin Go to the Administration of your WordPress blog. Visit the manage plugins section. You should see the Subrosa plug-in that hasn’t been activated yet.
Activate the Subrosa plugin.

Subrosa plug-in is now activated The Subrosa plug-in is now activated.

Four plug-ins are activated Let’s have a short view over the available plug-ins. The activated plug-ins are marked with a green color. At the moment, in the example, there are four plug-ins activated.

Test the Subrosa plugin

Encrypting a message using the contact form Let’s test the recently installed Subrosa plug-in.
Alice with a fictional e-mail address enters the subject “Encryption Test”, and the message text “This message will be encrypted.”.
Press the Encrypt button.

Wait a few moments Now you have to wait a short moment. In the example, it was necessary to wait for about two seconds.

Press the continue button A disgusting warning appears. The script is busy. The script should be continued.
Press the continue button.

Press the Send Message button A few seconds later, the message has been encrypted. Your name, your e-mail address, and the subject of the message aren’t encrypted. Only the message text itself is encrypted.
Press the Send Message button to send the encrypted message.

Thanks for your comments A confirmation appears: Thanks for your comments! Everything should be fine.

Receiving encrypted e-mail

Check for new e-mails Let’s check whether a new e-mail has been received.
Start the Thunderbird, and press the button to check for new e-mails.

Encrypted e-mail in Thunderbird mailbox There is a new e-mail in the mailbox with the subject “Encryption Test” from the sender Alice.
Double-click to open the encrypted e-mail.

Decrypting the encrypted e-mail

Thunderbird needs your passphrase To decrypt the message, Thunderbird needs your passphrase.

Copy the passphrase to clipboard KeePass allows you to manage your passwords. Copy the passphrase to the clipboard.

Paste the passphrase from the clipboard Paste the passphrase into the OpenPGP field.

Press the OK buttonThe passphrase has been inserted.
Press the OK button to decrypt the received message.

Thunderbird displays decrypted message Thunderbird displays now the decrypted message that has been sent by Alice.

Downloading, installing, and testing the Subrosa plug-in was successful.

Last edit: March 21, 2007

Permalink