After a few interesting experiences with some vendors going days without communication to suddenly changing PGP keys, to other vendors being unable to decrypt basic messages encrypted with their own public PGP key (thus making the more naive users rely on auto-encrypt), I've begun to wonder if it's in the public interest to keep a record of these suspicious vendors.
Now nothing here would be necessarily proven, but it would at least provide a format for:
- a list of suspicious vendors to be maintained
- suspicious (e.g. encouraging anti op-sec) behavior to be noted
- a way for the vendor in question (as well as other users) to respond to the accusations
- an overall improved security of community, with the ability for vendors to learn why said security tactics are not optional in the slightest
I already have a couple vendors in mind, to say the least, but am wondering if this is morally justified... Personally, though, I think security trumps morality, and moronity, in this case. Thoughts?
Because you are using a brand new account, your submission has been automatically hidden from public view and is awaiting moderator approval.
If this message disappears, you will know your post has been approved.
If it doesn't disappear and you are not given a reason for your submission's removal within 24 hours, you can try reposting your thread. Accounts must be at least 7 days old to post unrestricted on /r/DarkNetMarkets.
Please see this modpost for more information and make sure to read the rules of our subreddit. If you are new to this community, please check out /r/DarkNetMarketsNoobs to get started on your journey.
I am a bot, and this action was performed automatically. Please contact the moderators of this subreddit if you have any questions or concerns.