Silk Road forums
Discussion => Newbie discussion => Topic started by: mankoo on August 15, 2013, 08:02 pm
-
Is it necessary?
-
Only if there is sensitive info in the message . It takes them time to encrypt/decrypt those PM's .
-
Yep. Better safe than sorry!
-
ok thx guys!
-
Nah , not if it is not my details.
Some vendors tell you not to on their profile.
-
Only makes sense for things like address. Just asking general questions like "when will my order arrive" or "can I get a bulk discount" are not worth encrypting IMO.
-
Think of it this way. if ANYONE saw what you are about to say to someone, could it identify you OR the person your talking to? For example when placing an order and asks for an address, PGP. Want to comment on how packing it up in a paper bag with poo in it is a little less desired, PGP it (it then gives out how they're stealthing it which LE could use). Want to know if your order shipped? simply message "Order status?". If someone sends you a message and you just want to acknowledge what was sent, reply back with "OK" in the clear is fine. If you're not sure, PGP it.
-
spppppaaaaammmm :)
-
As weird as it sounds, I have started encrypting anything that mentions a specific product. I would personally also do it for addresses, of course, and for any specific delivery dates. But that's just my personal preference...
-
And oh yeah, PGP anything dealing with TRRRAAAACCCKKKIIIINNNGGGG!!!!! Sorry for yelling, but this information is just as important as your address esp since some fools sit at their houses and track their packages (that's my sarcastic way of telling you not to do this)
-Judge
-
Aren't address details automatically encrypted? If I understand correctly, a service such as Skype automatically encrypts all instant messages because both the sender and recipient have PGP keys installed with their software. I thought the ordering process on SR did the same?
-
Aren't address details automatically encrypted? If I understand correctly, a service such as Skype automatically encrypts all instant messages because both the sender and recipient have PGP keys installed with their software. I thought the ordering process on SR did the same?
If you have to ask, assume it's not. The only way to secure communications is to do pgp encryption on your computer and then paste it so the only way it can be decrypted is when the merchant takes the message and decrypts it. That's the only way to know for certain the message is secure.
Also I saw a story on clearnet where some security researchers noticed that skype visits urls entered in chat. It could just be something benign like making sure there's no exploits on it but that proves that skype can decrypt your message. Think I've read another story about microsoft essentially saying they comply to "lawful requests" for chat transcripts.
-
Think of it this way, if you wouldn't want LE reading it, PGP it. Simple, vague questions or messages don't necessarily need encryption. Like "oh hey placed an order last night wondering if you ship daily?" Or "What's your policy on FE for orders over x amount?" (Side note never FE).
Neither of these contain sensitive info (address etc) or anything that could be used to identify you. But say you asked if the seller ships express to the Southeast US, or what the expected transit time to Warsaw would be. These narrow down where the package is going, I'd say if you ABSOLUTELY need to ask a specific question, PGP it.
-
PGP whatever you feel like is "sensitive information", that can be addresses, btc addresses, names, locations, etc.
Anything that pinpoint a time, location, etc. should be PGP.
If you are just asking a vendor about his product PGP should not be used, takes a lot of time to respond than.
When ordering you should use PGP for your address for sure.