Silk Road forums

Discussion => Security => Topic started by: milkabuki on July 15, 2013, 08:56 am

Title: noob kleopatra pgp - keep my certificate?
Post by: milkabuki on July 15, 2013, 08:56 am
do i keep the certificate i made or can i delete it and make a new time everytime i make an encrypted address for a vendor? thing is i used r/silkroad's guide from reddit and it said for email put 'username@silkroad.onion'

okay if someone opens up kleopatra they would see i've been on sr - should i delete this and make another one with a less stupid email attached to it?

sorry to make a new thread but tried to search and couldn't find anything.

thanks.
Title: Re: noob kleopatra pgp - keep my certificate?
Post by: foxen624 on July 15, 2013, 09:44 am
There's no reason you should not keep your PGP key.  Especially if you post it in the forum and you do much encrypted communicating with various people.  Anyone you communicate with who uses your public key will have imported it to their virtual keyring and if you keep changing it, the people you communicate with will get pretty tired of that.  As well as it would be a nuisance for you too.

I get what you're saying about not wanting to leave obvious traces on your computer of having been to SR, but I've not read the particular tutorial you mention, but the sample email address they gave, was just to point out that you want to use a fake email address.  ANY fake email address.  It's usually a good idea to use your username just so that the person who sees your certificate sees the same user name that they associate with you... but as for the rest, you can use something as simple as say,   username@fakemail.tor......    or    username@anonmail.biz....   or  anything you happen to think of that is in the format of a real email address, but that does not really exist.

Another thing to remember....  NEVER upload your certificates to any directory as you will find to be an "option".  It's not an option here.  You don't want it uploaded to the clearnet period.  It will totally compromise your anonyminity.

Hope that was of some help anyway.....
Title: Re: noob kleopatra pgp - keep my certificate?
Post by: milkabuki on July 15, 2013, 09:18 pm
I think I understand. Since I only made my first transaction I think it'd be alright to make a new certificate with a more inconspicuous fake email and stick with that.

Thanks for the advice as well as the last tip, really appreciate it man.