Silk Road forums
Discussion => Newbie discussion => Topic started by: MussoM54 on August 24, 2013, 07:51 am
-
Hey there SR new member here trying to learn PGP. Can anyone throw me any tips as to where i can learn how to use PGP and download the necessary software for a mac. Thanks in advanced looking forward to getting this SR ball rolling!!!
MM54
-
You can learn a lot here:
http://www.gnupg.org/gph/en/manual/book1.html
You can find the mac software here:
http://www.gnupg.org/
and here:
https://gpgtools.org/
Also, check out Tails: https://tails.boum.org/
-
https://www.igolder.com/PGP/ online PGP en/decription tool
-
So am I better off using the online PGP tool or just downloading the mac software.
Definitely looking for the safest option not necessarily the easiest one
Thanks for the halp
MM54
-
Pasteing your private key and password on a website for decryption is not a good idea.
Even if a website does decrypt a message without sending a copy to the server, JavaScript, Java, and Flash all have problems gennerating random numbers, which will result in poor session keys and poor private keys. If a website generates your keys on the server, however, which is what igolder.com does since i just tried it and it worked with JavaScript disabled, the server is in position to keep a copy of your private key.
And, as far as that trust goes, Mac and Windows are less trustworthy platforms.
Think about using Debian, something that is sujected to public scrutiny, frequently used in security applications, and has GnuPG by default.
http://debian.org/
Tails is based on Debian, easy to use, comes with GnuPG and Tor, and "just works."
https://tails.boum.org
-
Yup. Even if you're just 'being paranoid', everything is better off installed locally - your bitcoin wallet, your pgp encryption/decryption software, etc etc. The moment you put information to an online service, there's no way of knowing what they might do with it.
-
@ Wernher
Thanks for confirming my suspicions that using a website is not the best option
In reference to tails; so if i download tails it will replace my tor bundle and it has PGP software?
@ incubusdriver
Thanks for confirming my "paranoia" hahahaha
was wondering how I can install my bitcoin wallet locally?
At the moment I have a blockchain wallet to pass coins through between purchasing and using on SR, is this not what I should be doing?
sorry about all the questions I get obsessive about this security stuff, which I guess is not a bad thing
MM54
-
;D
What you could probably do with is this, http://gpg4usb.cpunk.de
I struggle with remote controls for TV, so this is great try it if you have not done so already.
On board Wizard plus on board help. 8)
-
Google for "Hanewin PGP". That's a Java-script based encrypter. Just paste the vendors public key, type in your adress and click encrypt. Paste encrypted text into sr messenger. That's it. But before you do all that, download the site and do everything offline. It also works. The author says that no data will be send but to be safe download it anyway! Of course it's only one-way encryption. I use it for sending my adress. If you need decryption, e-mail support etc. you need some other tools.