Is there...?

Discussion in 'privacy technology' started by Checkout, Jun 12, 2002.

Thread Status:
Not open for further replies.
  1. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    Is there a server out there which will supply a pubic key so you can encrypt emails which it then decodes and forwards, as if it came directly from you?

    Reason
     
  2. snowman

    snowman Guest

    Checkout

    "certfied mail" may be what you are looking for..but its not free. its service encrypts e mails........I located it from the link WeSim provided in the severes/software forum..sorry I can't provide the url...I am much to lazy today LOL...hey..but honest//

    snowman
     
  3. Prince_Serendip

    Prince_Serendip Registered Member

    Joined:
    Apr 8, 2002
    Posts:
    819
    Location:
    Canada
    Yes or at least I think this might answer your question. You must have got snowman thinking. Go look at his posting in Privacy Software on Enigmail. There's a Link there for download. ;)
     
  4. bubs

    bubs Registered Member

    Joined:
    Apr 28, 2002
    Posts:
    106
    Location:
    Suffolk, England
    Good idea, good link.

    Thawte can provide proof of identity, but I don't think they're into email encryption.

    Enigmail has much going for it, but the problem for me with it is that it's no good if you use Outlook / OE as an email client.

    (Yes, I know I need my head examining!)
     
  5. bubs

    bubs Registered Member

    Joined:
    Apr 28, 2002
    Posts:
    106
    Location:
    Suffolk, England
    Checkout - What do PUBIC keys have to do with encryption (apart from the fact that they should be kept private at all times?!) :D

    Assume email (or anything else) is encrypted whilst en route between a UK IP address and a 'foreign' server before it is then de-encrypted prior to onward transmission.

    How well protected is such data from the kind of snooping our wondrous Parliamentarians are dumping on us?
     
  6. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    Have you spent too much time with Blaze recently? :rolleyes:
     
  7. snowman

    snowman Guest

    feel free to correct me,,,,,, but doesn't PGP have a public key and a private key

    snowman
     
  8. bubs

    bubs Registered Member

    Joined:
    Apr 28, 2002
    Posts:
    106
    Location:
    Suffolk, England
    No - look at your first post, and you'll see........ :D :D :D
     
  9. snowman

    snowman Guest

    Buds

    got a great big security hole open right now so will be brief......if you can spare a moment this page may offer you some options........oh...an thank you for advising...I was un-sure about pgp

    http://www.ipgpp.com/

    snowman
     
  10. snowman

    snowman Guest

    Buds......my apology for the briefness of my previous post....had a hole to plug...plus I am fighting with this new board to post........i"ll stay awhile longer an if it doesn't improve will log-out

    snowman
     
  11. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    Rats! What a Freudian slip! :D
     
  12. Prince_Serendip

    Prince_Serendip Registered Member

    Joined:
    Apr 8, 2002
    Posts:
    819
    Location:
    Canada
    I have half a hare-brained idea cooking here. Would it be possible to send an encrypted e-mail embedded within another e-mail which is encrypted differently? Just an idea for packet travel on the 'net. ;)
     
  13. bubs

    bubs Registered Member

    Joined:
    Apr 28, 2002
    Posts:
    106
    Location:
    Suffolk, England
    Prince Serendip - not sure that's really necessary - as I understand it, 128 bit encryption is good enough.
     
  14. bubs

    bubs Registered Member

    Joined:
    Apr 28, 2002
    Posts:
    106
    Location:
    Suffolk, England
    Snowy - thanks for the link - sorry so long to come back.

    I've looked at the help file for Outlook / Outlook Express, and both support email encryption.

    I'm trying to get my head around the seemingly huge weak link in the chain - how to control distribution of your public key.

    It looks like Thawte's 'free / personal' certificates are not 128 bit - those cost $300 / yr. For commercial use, Thawte make sense, as use of the so-called 128 bit 'supercert' enables the licensee to use the Thawte logo on a website.

    Verisign don't seem to be into personal certs in the same way.

    I guess its time to download PGP and have a play!
     
  15. bubs

    bubs Registered Member

    Joined:
    Apr 28, 2002
    Posts:
    106
    Location:
    Suffolk, England
    Read the Read Me

    Big download......... it seems as if PGP 6.58 build 08 will work with Outlook, but is unstable with Outlook Express.

    (Just in case I'm not the only OE user round here!) :oops:
     
  16. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    Re:Read the Read Me

    You're not. It's a Hotmail thing.
     
  17. bubs

    bubs Registered Member

    Joined:
    Apr 28, 2002
    Posts:
    106
    Location:
    Suffolk, England
    It's a Hotmail thing.

    No bad language, pleeeeeeeeeeeeeeeeeze (rhymes with Klez) :D
     
  18. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    Sorry! Forget myself, sometimes. :D
     
  19. controler

    controler Guest

    Hey you guys!!!!!!!!!! :D

    Yes PGP does have two keys
    one public that you can post to a few public servers and
    one you keep secret ;) Which your friends import into their PGP
    without the secret key, they can't easly decrypt your mail.

    To use Outlooks encryption , you need a certificate by verisign ect.
    WHich of course is not free.
    am I makin any sense here ?

    [glow=red,2,300]controler[/glow]
     
  20. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    I think the question here is just how secure is PGP these days?
     
  21. controler

    controler Guest

    You mean we will have to encrypt our encrytped data and hid it in
    an JPEG?
    No end to it huh? LOL
     
  22. FanJ

    FanJ Guest

    Hi all,

    This gives me another opportunity to post a link which I already have posted in the NISFileCheck Guidelines (see in that forum-part); it is a link which I got from Luv2bsecure (thanks again John !):

    http://hotwired.lycos.com/webmonkey/backend/security/tutorials/tutorial1.html

    On that site you can read some more about the basics of these kind of things.
    Enjoy !
     
  23. bubs

    bubs Registered Member

    Joined:
    Apr 28, 2002
    Posts:
    106
    Location:
    Suffolk, England
    Strength - the impression I'm getting is that there is no problem there, whether one uses PGP, Thawte or Verisign.

    The real catch which i've only just cottoned on to is that you can only SEND encrypted to another party who is already into encryption, and who has supplied you (either directly or by posting it somewhere) with their public key.

    There is thus a serious 'useability' catch in every day use.

    I'm sure it is the future - just think how 10 years ago nobody used email at all......

    FanJ - thanks for the link.
     
Thread Status:
Not open for further replies.