I agree that it's an email problem, which is why I wrote a whole article about why email can't be made secure with any reasonable client. But email is overwhelmingly the messaging channel PGP users use; in fact, it's a common-cited reason why people continue to use PGP (because it allows them to encrypt email).

▲

pheggs 3 days ago | parent [-]

out of curiosity, would you like to share why you think it's an email protocol problem? Because I see that more as an email client problem

	▲	akerl_ 3 days ago \| parent [-]
		A protocol that doesn’t enforce security and relies on clients to choose to implement it is a broken protocol, from a security standpoint. Even if secure email clients exist that always make right choices, because you can’t know what client all your recipients are using, all it takes is one person with a “bad” client (which, keep in mind, is a client that accurately implements the protocol but doesn’t enforce additional security rules on top) to ruin things.