Silk Road forums
Discussion => Security => Topic started by: turningjapanese on August 14, 2012, 06:49 pm
-
I've given up. It seems as though I can't effectively use GPG on Mac OSX 10.5.2.
What other options are there for safe-ish communications between me and a vendor, to send them my address?
-
You don't want a different method of sending private information, you want a new OS.
I'd highly recommend Liberte Linux, a bootable, highly secure version of Linux. It's what I use to access the deepweb. I would suggest using this and only this to access the deepweb, and wipe any traces of deepweb activity from the Mac OS.
Liberte comes with gpa pre-installed, not to mention some other useful applications (Figaro's Password Manager 2 for one).
Along with allowing you to easily use GPG, it only runs on RAM (so no one will find a trace of your activities once you shut it down), and all your stuff is stored on an encrypted drive, the password of which is required to boot.
Not to mention, it randomizes MAC address automatically.
Now I'm not exactly an expert on this stuff, so if you have any questions, feel free to ask them and I'll answer them if I can, but hopefully someone with more expertise can jump in. This is the official site:
http://dee.su/
-
priv note is the only other thing but it could very well be a hpney pot.
-
how about http://alternativeto.net/software/gpgtools/?platform=mac
-
Ahhhh. The command line, you say? : ) Please tell me more. I won't make you do ALL the work, I'll start looking into it now.
Linux sounds very attractive. I'll look into it too1
Thanks friendlies.
-
Cozmo, thanks for the link, but that's the main one I've been playing with to no avail.
No GPG services or GPG preferences. What am I missing besides Hotkeying? That's as far as my technical knowledge goes for reals.
Treat me like a child, for this.
-
Here is an implementation of PGP for Javascript. Save this page (the complete page; with scripts) to your computer and run it locally if you need to encrypt messages.
http://www.hanewin.net/encrypt/PGencode.htm
This is no substitution for GnuPG + keyrings, but it will work in a pinch. Just be sure to run it locally!!
-
If all else fails:
- buy an external hard disk (doesn't have to be a large one)
- Install Ubuntu on it
- boot from hard disk & profit
-
2 Questions:
Run Locally?
Profit?
Treat me like a child ; )
Thanks for helping out
-
Run Locally?
The first thing you will need is the ascii-armored public key of the vendor. You should find that on your vendors page -- Copy the text, including the "BEGIN" and "END" lines. It will look like this:
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2.0.17 (MingW32)
[CRYPTO GIBBERISH ...]
-----END PGP PUBLIC KEY BLOCK-----
*Saving the Scripts*
1. Using your Tor Browser, go to http://www.hanewin.net/encrypt/PGencode.htm
2. Go to File -> Save Page As (make sure to save the page as "Web Page, complete")
3. Again with Tor Browser, visit http://www.hanewin.net/encrypt/PGpubkey.htm
4. Go to File -> Save Page As (again, make sure you download as "Web Page, complete")
*Formatting the vendor's public key block*
5. In your Tor Browser, open the downloaded PGpubkey.htm file
6. Place your vendor's ascii-armored public key in the text area labelled "ASCII armored PGP Public Key Block" -- this is the key on the vendor's page.
7. After pasting, click "Get Public Key Information" -- You should now see the 'name' and email address associated with that key -- if it looks correct, proceed to the next step. -- Otherwise try again; you may have made a mistake pasting the key, or pasted a key from the wrong vendor.
*Encrypting a message*
8. The bottom-most field on PGpubkey.htm should now contain the Public Key in Base64 format. Copy this to your clipboard.
9. In your Tor Browser, open the PGencode.htm file
10. Paste the public key from step 8 into the field marked "Public Key of receiver(MPI in base64):"
11. Enter your message.
12. Press "Encrypt Message"
13. Disco.
*IMPORTANT* The scripts in PGencode do not "phone home", so are safe to run on your local machine. Scripts may change, so it is always best to double-check the source if you are able to. The files, as of today, are safe.
-
Holy shit. Just use the command line version of GPG in Mac. It's not very hard.
-
I too started using GPG for mac on OS 10.7 recently. The latest stable version wasn't working for me either. The nightly build did though. You might want to give it a try.
-
MAC..
gpg key chain.
terminal.
boom.
-
i am thinking about ordering one of the portable usb's from the Road the comes pre-filled with everything.
hmm.. they seem so dope.
-
i am thinking about ordering one of the portable usb's from the Road the comes pre-filled with everything.
hmm.. they seem so dope.
Don't be silly. They might be packed with spyware, you can't be sure. Build your own.
-
i am thinking about ordering one of the portable usb's from the Road the comes pre-filled with everything.
hmm.. they seem so dope.
Don't be silly. They might be packed with spyware, you can't be sure. Build your own.
+1