Silk Road forums

Discussion => Security => Topic started by: Drewington3258 on July 10, 2012, 08:19 am

Title: quick privnote question
Post by: Drewington3258 on July 10, 2012, 08:19 am
My Vendor request I use it instead of PGP - just a one off.

1. Do I need to access it via tor.

2. If so, it says I must have javascript enabled to use it. How?

Pardon my technical incompetence.


Many thanks.
Title: Re: quick privnote question
Post by: jameslink2 on July 10, 2012, 09:52 pm
I agree with Guru here and will add

RUN AWAY!

I would not touch a vendor that requested privnote with a 100 meter cattle prod.

But that is just me.
Title: Re: quick privnote question
Post by: AncientX on July 10, 2012, 10:06 pm
Personally, i do like privnote, but not for exchanging addresses to vendors, but more so of asking Questions or things that i wouldnt want to see saved in any inbox or anything like that.

@.@ Still need to set up my pgp, been putting it off for so long now.
Title: Re: quick privnote question
Post by: James Bond 007 on July 11, 2012, 12:49 am
learn gpg use the search bar byd its way safer!
Title: Re: quick privnote question
Post by: kmfkewm on July 11, 2012, 01:01 am
My Vendor request I use it instead of PGP - just a one off.

1. Do I need to access it via tor.

2. If so, it says I must have javascript enabled to use it. How?

Pardon my technical incompetence.


Many thanks.

As a customer, I think you can be cut some small amount of slack in this regard. However, a vendor who either cannot -- or worse yet  -- will not -- use PGP is another thing altogether.  I wouldn't do business with such a vendor, regardless of what he is selling or at what price. It only stands to reason that a vendor is more of a target for the authorities than a customer. If a vendor does not make the fullest use of the best tools available to protect both himself and his customers, then I have to call his competency into question.

Ask yourself, do you really want to deal with a vendor who is either too lazy (or too incompetent) to use the best tools to protect _your_ information?
If you do business with this guy, that's exactly what you're doing.  Personally, I wouldn't touch him with a barge-pole.

Guru

I disagree entirely. It is almost entirely the customers risk if GPG is not used. Vendors are barely more vulnerable if they use GPG or not provided they take all the other required counter measures. So I think customers who do not use GPG can not be cut slack, since using GPG is almost entirely to their advantage.
Title: Re: quick privnote question
Post by: jameslink2 on July 11, 2012, 01:23 am
I disagree entirely. It is almost entirely the customers risk if GPG is not used. Vendors are barely more vulnerable if they use GPG or not provided they take all the other required counter measures. So I think customers who do not use GPG can not be cut slack, since using GPG is almost entirely to their advantage.

However, the java in privnote could reveal a dealers real IP even if you are using tor. Thus being a LARGE risk for the dealer.
Title: Re: quick privnote question
Post by: PsilocybinTendencies on July 11, 2012, 01:34 am
If you search the forums that dude kmefkwm goes on a hilariously enlightening and informative tyrade against the use of privnot. He convinced me to never use it again.

Ill find the link here soon and post it.

There are decent vendors who may not have figured out pgp right away when they started, but I agree with the other posters, go with a vendor who offers a pgp key.