Silk Road forums

Discussion => Security => Topic started by: Miss Sexy Boots on September 07, 2013, 03:35 am

Title: Whats the Best Backup Email/ Messaging Service???
Post by: Miss Sexy Boots on September 07, 2013, 03:35 am
Now that TORMAIL is dead what do the experts recommend for secure back up email/ messaging and communications?

I am still pretty shocked to see that most vendors have not updated back up communication address or their GPG/ PGP Keys (Which include their old dirty Tormail addresses).

As TORMAIL completely fell over I thought that the first and the smartest business decision any prudent vendor would make would be to set in place back up plans in case the same fate became of SR. If I were a business owner I would have scrambled to set up redundancy so that I could stay in business regardless... but few seem to care, and even fewer have implemented such back up communication strategies.


I have looked into:

Safe-mail.net - But it seems to be pitiful. A bit like playing on an early 90's battery powered hand held LED toy.

Countermail.com - But it required full on Java, which is exactly what I am told we need to avoid like to plague on our browsers. I have failed when trying to upgrade the java applet on multiple computers and worry that this level of exposure is a potential ticking time bomb.


Any input regarding this topic/ conversation is greatly appreciated.

Bootzy...

   
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: flwrchlds9 on September 07, 2013, 03:43 am
If you wan make sure e-mail provider stay around then use yahoo or hotmail and mandate PGP only communications 100% of time and never log in outside of Tor.

All other e-mail provide not any more secure then that really. maybe nsa does not have auto-back door into them but security is false there just like on tormail, if you don use PGP it is not safe.
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: StaticTension on September 07, 2013, 04:15 am
Now that TORMAIL is dead what do the experts recommend for secure back up email/ messaging and communications?

I am still pretty shocked to see that most vendors have not updated back up communication address or their GPG/ PGP Keys (Which include their old dirty Tormail addresses).

As TORMAIL completely fell over I thought that the first and the smartest business decision any prudent vendor would make would be to set in place back up plans in case the same fate became of SR. If I were a business owner I would have scrambled to set up redundancy so that I could stay in business regardless... but few seem to care, and even fewer have implemented such back up communication strategies.


I have looked into:

Safe-mail.net - But it seems to be pitiful. A bit like playing on an early 90's battery powered hand held LED toy.

Countermail.com - But it required full on Java, which is exactly what I am told we need to avoid like to plague on our browsers. I have failed when trying to upgrade the java applet on multiple computers and worry that this level of exposure is a potential ticking time bomb.


Any input regarding this topic/ conversation is greatly appreciated.

Bootzy...

 

There's not too much options to be honest. You can still use countermail without having to run Java. Just sign up and configure your email client to point to countermails mail server. I know a few people that use it and it seems legit for now. They also offer encryption built in but again we should never rely on third party encryption as it can never truly be trusted. Probably a safe bet would be a vpn, sign up for a fresh email account anywhere and use encryption for all your communications.
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: flwrchlds9 on September 07, 2013, 04:34 am
Have been very curious for more information on what happen to Tormail. All the talk on main site of backups multi servers etc. The domain web server never went down but nothing else as we all know. Tormail domain no seized so theory can be put back up. Interest that nobody have some better information on that.
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: StaticTension on September 07, 2013, 04:47 am
Most likely the Feds are keeping a tight watch on the info that's coming out. Don't want to reveal too much and let people adapt.
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: Miss Sexy Boots on September 07, 2013, 06:40 am
Thanks all - Have a great weekend where ever you may be.

Bootzy.
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: Baraka on September 07, 2013, 06:59 am
http://bitmailendavkbec.onion/
Bitmessage Mail Gateway

That's by far the best out there right now. You setup an account then use Thunderbird with Torbirdy to access your account via the same onion address above (check both your pop and smtp settings to make sure only the onion address is in there). Install Enigmail to work with GPG and Thunderbird to encrypt all your messages. It's stupid simple and you won't ever get fucked accessing your account without Tor.

http://torbox3uiot6wchz.onion/
TorBox

That second site looks really cool but I haven't been able to access my accounts after setting them up. Tried repeatedly over several days and both accounts failed. Fuck that  >:( Speak up if you have more luck with it.
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: Rastaman Vibration on September 07, 2013, 06:12 pm
If you wan make sure e-mail provider stay around then use yahoo or hotmail and mandate PGP only communications 100% of time and never log in outside of Tor.

Yahoo seems to be banning accounts made/accessed over Tor these days. After much searching, I found a clearnet email provider that will let you create accounts over Tor: myway.com

Of course, PGP is a must for sensitive info
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: TA on September 07, 2013, 06:20 pm
Tried myway. Requires java.
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: Trappy on September 07, 2013, 10:35 pm
Yahoo mail works over TOR, but does it require java?
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: MarcelKetman on September 07, 2013, 11:41 pm
Yahoo mail works over TOR, but does it require java?

No it doesn't.
Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: FreedomOutlaw on September 08, 2013, 01:32 am
Yahoo mail works over TOR, but does it require java?

No it doesn't.


I was going to say I think you can configure Thunderbird to pull emails from Yahoo using Tor and then disable all plugins in Thunderbird.



Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: Miss Sexy Boots on September 08, 2013, 01:53 am
http://bitmailendavkbec.onion/
Bitmessage Mail Gateway

That's by far the best out there right now. You setup an account then use Thunderbird with Torbirdy to access your account via the same onion address above (check both your pop and smtp settings to make sure only the onion address is in there). Install Enigmail to work with GPG and Thunderbird to encrypt all your messages. It's stupid simple and you won't ever get fucked accessing your account without Tor.

http://torbox3uiot6wchz.onion/
TorBox

That second site looks really cool but I haven't been able to access my accounts after setting them up. Tried repeatedly over several days and both accounts failed. Fuck that  >:( Speak up if you have more luck with it.

Hi,

Ive been playing around with 'Bitmessage Mail Gateway' - it really seems to be the goods. Like it a lot.

Your set up sounds pretty solid and I am going to give it a go.

Question: Would it be wise to run Thunderbird from inside a VM like Whonix, which is in turn inside a Truecrypt folder? And if so, how does one choose for the messages to be stored in a file in the encrypted folder? (As opposed to having Thunderbird choose to store them in a regular unencrypted folder on my HD.

Cheers Guys!

Title: Re: Whats the Best Backup Email/ Messaging Service???
Post by: StaticTension on September 08, 2013, 07:58 am
Look out for Bitmessage. There's a serious flaw in their protocol. Search the boards for more info. On a side note what about signing up for any email provider like yahoo for example over Tor then use Pidgeon IM with Off the Record plugin. That's the IM app that comes with Tail. What you could do is add your contacts there, encrypt your message then send it to them. Basically like email but your getting double encryption and also the source and destination of said message is discarded or not traceable back to you once the session is over according to documentation. Again I haven't used that service but I presume it's legit as it's included in Tails. Any thoughts?