Silk Road forums
Discussion => Newbie discussion => Topic started by: A1pha on June 23, 2013, 09:02 pm
-
just interested in how seriously people take their security around here.
-
I use it. Wouldn't make an order without it. That's pretty reckless in my eyes, as well in a lot of reputable vendors eyes. Most vendors will cancel orders if not encrypted. When you do something it should be done right and safe. When you change a tire on your car you wouldn't take the chance of just putting on 2 lug-nuts hand tightened.
-
I'm not completely sure it's necessary. Obviously if a vendor requires it, and I want something bad from that vendor, I will learn it. Otherwise, I use vendors who don't require it. People get a little too paranoid.
-
Come on guys, we're committing federal crimes here (in most countries I know of).
There's no such thing as "too paranoid" lol.
Plus, PGP isn't hard. There are plenty of brilliant guides on here. There's even a Newbie PGP club.
While it's true that communications through SR are already encrypted, you want as many layers of security as you can get. This isn't amazon, (if only it were that simple -.-)
~ST
-
Oh yes i use!
I didn“t know how it works a long time, but it is so simple to use!
-
I don't think the crime is actually committed until the package is placed in the federally run mailing system. Transmitting a mailing address to another party via the internet isn't a federal crime, that I'm aware of ........
-
If you don't encrypt sensitive information with PGP, you are trusting that the Silk Road has been programmed in a bulletproof way.
I don't have that level of trust, so I encrypt sensitive information with PGP.
Why leave it to trust when you can take charge of the situation and look after your security yourself?
-
I don't think the crime is actually committed until the package is placed in the federally run mailing system. Transmitting a mailing address to another party via the internet isn't a federal crime, that I'm aware of ........
Too many people on these boards talk about what is and isn't a crime. I don't know if soliciting the purchase of a controlled substance is a crime in your jurisdiction, but I can assure you it is enough to arouse suspicion. And suspicion is all the police need to justify further investigation.
EDIT - just re-reading this and I sound like a bit of a cock. Everyone's level of risk is different. We should all do what we're comfortable with, but for goodness' sake, make sure you are at least aware of what risks you are running.
-
You're pretty much an idiot if you don't use it. I really don't see why you wouldn't, it's very easy.
Having SR or its logs be compromised is not a very far-fetched scenario. I'd rather encrypt my address than save 30 seconds to send it unencrypted and risk possible arrest for no good reason at all.
-
Not needed for SR since all communications are already encrypted. Never heard of a problem using SR encryption only, and probably never will. But if the vendor requires it you should use it.
-
PGP was the steepest part of the SR learning curve for me. Using TAILS its as easy as writing some text and pushing the "Encrypt" button.
It's been said, you can't be too paranoid.
-
Very!!
-
Not needed for SR since all communications are already encrypted.
lol use your noggin mate
-
d
-
Working on learning it
-
PGP is the standard, and I'm not even a paranoid person.
-
I didn't place an order until I figured out PGP and imported the public keys of the sellers I was interested in. I wish vendors would sen their communications encrypted to buyers, but I guess at least keeping my address and name confidential is better than nothing.
-
I will be using it for all future orders.
-
Am I correct, if we've done this correctly, we should be sending the encrypted message PLUS a new key to the other person? So they can decrypt?
-
I think its very smart to use it...just to be safer is always a good idea
-
I say 100% yes you should use it. It's easy to use once you learn. There's a program called Kleopatra that works great and pretty much is everything you need to get it done.
-
Am I correct, if we've done this correctly, we should be sending the encrypted message PLUS a new key to the other person? So they can decrypt?
No, to send an encrypted message to the vendor, you encrypt it with the vendor's public key. Then it is decrypted with the corresponding private key, which only that vendor has. Normally you would include your public key, in case the vendor wants to reply in an encrypted format.
-
@m1ddle no you dont need to send them your public key, because they arent going to send you any info that needs to be encrypted.
Guys im a slacker/stoner/drugie who barely pays the rent(very irresonsible). I play it pretty fast and loose and i use pgp, you just
have to know that all of this is under constant scrutiny. It may seem like ebay, but much of this is illegal.
-
thought that pgp was gonna be harder than it turned out to be, but i've only sent encrypted