I was looking at the PEP features in EnigMail, and so changed from "Force use Enigmail" to "Force use PEP".
But looking at the certificates, it created new certificates (trusted) from my email address. It actually create two new certificates. I turn off PEP, backed up the certificates, and then deleted them. I don't think anything got encrypted / signed by them.
I posted on the Enigmail forum, but the response was that it is a PEP issue.
From reading the other messages, I think it may be because there is a password on the certificates, and to use gpg to remove that.
I know PEP is supposed to be easy, but are there plans to add password support, for increased security (if someone wants to turn it on)?
I also read something about issues with certificates for multiple addresses not working correctly.
The other thing is that if there is an existing certificate for the email address, even with a password, or with multiple addresses, I think it should at least warn the user (not silently create a new one).