Silk Road forums
Discussion => Security => Topic started by: 1100101 on January 10, 2013, 10:16 pm
-
Hey all,
So, every time I work with pgp/gpg, I've been in the habit of uninstalling/reinstalling it with a usb stick.
I only install/uninstall gpg with my ethernet cord disconnected from the pc, and I only encrypt information with the ethernet cord disconnected. SO, my question: Is this a pointless step to take to help ensure my security, or should I keep it up?
To be completely honest, I don't have extreme security measures in place for browsing SR and the forums. It would be possible for me to make a secure set up (I know how), but because I work from home, I like to browse the forums while I work. Never do I visit SR while I am working though. I use win 7, and I don't boot from usb drive to use tor. I also only order very small personal amounts of weed. So, in general my security kind of sucks so I was just curious as to whether or not it was a good idea to stay disconnected while using gpg/pgp?
Started to ramble but thx for response!
-
Seems pointless. Especially disconnecting the cable, gpg tools don't even need to use internet, except downloading from keyserver and wouldn't give away any identifying info. Anyway gpg is the least dangerous tool when you deal in SR. You already have tor installed and probably SR address bookmarked. Don't you think that's a bit more dangerous than a legal encryption tool? Just make sure your personal key isn't registered with your real name or clearnet email,if you use it in here.
I suggest you download truecrypt and do a full disk encryption it's a good option since you use the same PC for all your activities.
-
You can leave the gpg on the usb-stick.
You can leave the stick in the computer for ever.
Use a other stick for tails, or use a dvd.
You will be safe.
For sure!
-
Seems pointless. Especially disconnecting the cable, gpg tools don't even need to use internet, except downloading from keyserver and wouldn't give away any identifying info. Anyway gpg is the least dangerous tool when you deal in SR. You already have tor installed and probably SR address bookmarked. Don't you think that's a bit more dangerous than a legal encryption tool? Just make sure your personal key isn't registered with your real name or clearnet email,if you use it in here.
I suggest you download truecrypt and do a full disk encryption it's a good option since you use the same PC for all your activities.
My thinking in disconnecting and doing my data encryption offline is because I feel when I am actually writing what I want to encrypt (address for example either in notepad or the gpg clipboard), that information would be more easily obtained by someone if I was online when I was writing the incriminating data. I used to use gpg in my line of work for legitimate reasons before I used it for anything illegal. I didn't do a great job of asking what I was really trying to find out, lol
I don't have SR or the forums bookmarked, I keep that info in my head. Tor is installed, but I have other sites (plausible deniability) bookmarked (that aren't drug markets).
-
Obtained how? GPG is not broadcasting what you write, and for LE to be monitoring you they would already have your address.
Only way that I can think of someone seeing your address while typing would be a keylogger but it's not what LE would use. And anyway that wouldn't make any difference if you were temporarily offline.