Silk Road forums

Discussion => Newbie discussion => Topic started by: mellow_yellow on August 22, 2013, 08:11 am

Title: Address in SR messages
Post by: mellow_yellow on August 22, 2013, 08:11 am
My vendor forgot something with my order. He is now requesting my address though the message system to send it out to me. Is this as safe as sending it though the order form? I know with the order form it is encrypted then deleted. Is it a security risk to send address / personal info in the SR message system?

Is sending my address (without PGP) any less secure then when i send it through the order form (without PGP)????
Title: Re: Address in SR messages
Post by: mellow_yellow on August 22, 2013, 08:43 am
bump
Title: Re: Address in SR messages
Post by: klemmo on August 22, 2013, 08:45 am
Should be fine if you encrypt it with the vendor's PGP key. You can always message them with a message saying "I hope that's deleted" after your order arrives.
Title: Re: Address in SR messages
Post by: Lester Burnham on August 22, 2013, 08:46 am
Use PGP, especially for addresses.
Title: Re: Address in SR messages
Post by: cryngie on August 22, 2013, 08:47 am
the order forms are not encrypted i dont think thats what pgp is for
Title: Re: Address in SR messages
Post by: mellow_yellow on August 22, 2013, 08:58 am
They dont have a PGP key on their page.

Is it less secure then when i send my address with the order form? I didnt encrypt with PGP then.
Title: Re: Address in SR messages
Post by: mellow_yellow on August 22, 2013, 09:27 am
the order forms are not encrypted i dont think thats what pgp is for

from the wiki:

From the moment you submit your order, to the moment it is displayed to your vendor, the information is fully encrypted and unreadable. Then, as soon as your vendor marks your package with the address and confirms shipment, the address is deleted forever and is irretrievable. For the extra cautious, you can encrypt your information yourself with your vendor's public key. This way, even if the Silk Road server your address is on were compromised, your address would still be safe.
Title: Re: Address in SR messages
Post by: mellow_yellow on August 22, 2013, 09:28 am
I normally dont use PGP when ordering but I am wondering if sending address using the message system is less secure than though the order form.
Title: Re: Address in SR messages
Post by: Boobonicchronic on August 22, 2013, 09:36 am
PGP PGP PGP!!!! Youtube it and it wont take you a total of 15 minutes.... if your vendor isn't set up for PGP get yourself a new vendor!!! Just saying the whole point of this place is to make money/get what you want AND STAY SAFE!!! If he/she is putting your safety at risk you have to ask yourself are they really worth buying from?
Title: Re: Address in SR messages
Post by: mellow_yellow on August 22, 2013, 09:38 am
I agree. The issue is they owe me something so I have to give them my address so i can get it
Title: Re: Address in SR messages
Post by: vansprinkel on August 22, 2013, 09:44 am
I've been all over the you tubes looing at tutorials for PGPGPGeee. And I can't figure out if my messages are sending.

I sent a message to a vendor I'm interested in and asked him to let me know if he got it. But its 5am so I doubt I'll find out anytime soon.

Where do the pgp encrypted files go after you export them? Do they just show up on the persons command prompt? Or do they have a special folder that PGP files go to.

Or am I supposed to attach it to an email? Or what? Help please. Before everything gets buried in spam again. Thanks.
Title: Re: Address in SR messages
Post by: mellow_yellow on August 22, 2013, 09:46 am
The question I want answered though is this.

<strong>Is sending my address (without PGP) any less secure then when i send it through the order form (without PGP)????</strong>
Title: Re: Address in SR messages
Post by: parmesan on August 22, 2013, 10:34 am
you should never order without pgp so either way its not secure now. might as well send it in a message, just as unsecure as sending it through the order box. dont order from vendors who dont use pgp if they arent smart enough to figure it out they arent smart enough to be dealing on sr.