SELS

About NCSA Projects User Info News

University of Illinois
at Urbana-Champaign

sels

SourceForge.net Logo

Download SELS brochure

SELS Brochure

Secure Email List Services (SELS) is an open source software for creating and developing secure email list services among user communities. SELS provides signature and encryption capabilities while ensuring that the List Server does not have access to email plain text. SELS has been developed with available open-source components and is compatible with many commonly used email clients.

Project Status

Funding for the SELS project at NCSA has ended. We are not able to support new lists at this time. The SELS source code is available from the Sourceforge project page.

Clients Supported

Mozilla Firefox web clients , e.g. GMail supported with FireGPG plugin. SELS also supports PGP Desktop apart from GnuPG as a key management utility.

For details refer Supported Email Clients.

Current Release

The current release is 1.1. Download here.

Latest Changes

  • Revocation certificates distrbuted automatically for previous List Key
  • Delete a subscriber" functionality added. Subscriber can be deleted via Mailman web or command line interface. Subscriber's keys are also removed
  • Smarter Bounce messages added to make SELS more user friendly.
  • Patch files now distributed for modified Mailman files SMTPDirect.py and OldStyleMemberships.p
  • Thorough code review done. Fixed bugs 18, 19, 20, 21, 22, 23, 24 nd 25.
  • Improved error handling and improved security features such as: List Server public key is now encrypted when it is sent to the Moderator.
Here is the SELS Version History.

Features

  • Removed email address from user key pair. Retain name and comment.
  • Two key lengths supported for all SELS keys, 1024 and 2048 bits.
  • Bounce Messages generated for general user errors. See List Subscriber FAQ entry #4
  • User keypair for list in decryption only. This key pair cannot be used for signing or encrypting a message, thus enhacing SELS security.
  • All users are recommended to place full key trust in the List Moderator's public key and then sign it locally with their signature key. This allows transitive trust for all keys signed by List Moderator automatically.
  • List Moderator and List Server Administrator can choose key expiration for their respective keys.
  • Batch user subscription with auto generated passwords.
  • Multiple recipients supported.
  • List Server (LM) , List Moderator (LS), Crypto code (common) and modified GnuPG library (gpglib) available as a Gnu Autotools code archive.

Bugs Fixed

  • Bugs 24 and 25 fixed in 1.1 release.
  • Race condition when using popen for interactive GnuPG commands in LM code. 23 fixed in 1.0 release.
  • Bounce for HTML messages from Outlook 2003 and 2007. 22 fixed in 1.0 release.
  • Synatx for revocation cert file names not supported on Windows. 21 fixed in 1.0 release.
  • GnuPG prompts different on Windows and *nix platforms. 20 fixed in 1.0 release.
  • Java Install Check. 19 fixed in 1.0 release.
  • Minor bug in LM code Bug.18 fixed in 1.0 release.
  • Java version check added to LM and LS code. Bug 17 fixed in 0.6.1 release.
  • Bug 16 fixed in 0.5.5 release.

Last modified: 06/11/09
Copyright 2000-2008 Board of Trustees of the University of Illinois.