Silk Road forums
Discussion => Newbie discussion => Topic started by: xlr8r on June 20, 2013, 05:43 am
-
If the tor browser is through the anonymous onion network, why do ppl still use PGP?
-
Because if SR were to ever get taken into the wrong hands whoever goes through the site would be able to see all the names and addresses sent through the system. With PGP you ensure that the vendor is the only one able to decrypt and have them. Once your package is sent vendors are supposed to get rid of all addresses as well
-
Yep, it's an extra layer of protection. Can't be too careful. Oh my goodness, I am coming up fast on my 50th post...finally...i've been a member for 7 months now already!
-
Hey me too! Finally found a thread important enough for me to take the time to get there
-
Ok,that makes sense, i donr know how to use it, and im not a vendor,so i should be fine yeah?
-
Do you come off newbie after 50 posts?
-
Yes you do. And if you want to risk having your address possibly available to the wrong people then don't use PGP. Honestly though, it's super easy to learn, took me like 10 minutes. And some vendors will only accept addresses through PGP, so that's another reason to learn
-
i need to learn how to use it
-
you don't need PGP.. but it is highly recommended :) an after figuring it out, pretty simple ;)
-
Congrats nero on ur junior member status?
-
Yep, I will be able to proudly say I did not type an ounce of spam in any of those dirty spam threads. I mean, really. Are people that uncreative? You're on drugs, for chrissake. Think of something interesting to say.
-
Yep, I will be able to proudly say I did not type an ounce of spam in any of those dirty spam threads. I mean, really. Are people that uncreative? You're on drugs, for chrissake. Think of something interesting to say.
LMAO
Exactly right!
-
Yep, I will be able to proudly say I did not type an ounce of spam in any of those dirty spam threads. I mean, really. Are people that uncreative? You're on drugs, for chrissake. Think of something interesting to say.
:( hey.. I used a spam thread.. you calling me uncreative ::)?
-
It took me a little while to learn, I just kept sending between my email accounts.
-
>Are people that uncreative? You're on drugs, for chrissake. Think of something interesting to say.
Something non-identifying ;)
-
Ok,that makes sense, i donr know how to use it, and im not a vendor,so i should be fine yeah?
there is lot of thread how to use it, do it :) it's for your safety.
-
dshfjhgkjlkl
-
The same reason you wear a seatbelt. It's just common sense.
-
most ppl seem to think that being on tor and the onion routing system is enough!
-
ha
-
thx for that hannah ???
-
Because if SR were to ever get taken into the wrong hands whoever goes through the site would be able to see all the names and addresses sent through the system. With PGP you ensure that the vendor is the only one able to decrypt and have them. Once your package is sent vendors are supposed to get rid of all addresses as well
Doesn't Silk Road delete the order details after all thing have been finalized?
-
Doesn't Silk Road delete the order details after all thing have been finalized?
I would imagine so, but the general idea is to minimize your risk to begin with. If SR is hacked or information leaked before it is deleted, then your sensitive info might get released. By encrypted via PGP or other means, then without the private key it's going to be fairly difficult to crack.
-
Might as well ask here, I heard that SR uses its own msg decryption as well?
-
Might as well ask here, I heard that SR uses its own msg decryption as well?
Can you give more details? Do you mean you heard they unencrypt the information that is PGP encrypted with a vendor's public key? That is not practicable unless you have the private key (which only the vendor themselves would have the private key corresponding to their public key).
-
Might as well ask here, I heard that SR uses its own msg decryption as well?
Can you give more details? Do you mean you heard they unencrypt the information that is PGP encrypted with a vendor's public key? That is not practicable unless you have the private key (which only the vendor themselves would have the private key corresponding to their public key).
I ment that plain text msgs sent on SR are encrypted using their own system
-
Doesn't Silk Road delete the order details after all thing have been finalized?
I would imagine so, but the general idea is to minimize your risk to begin with. If SR is hacked or information leaked before it is deleted, then your sensitive info might get released. By encrypted via PGP or other means, then without the private key it's going to be fairly difficult to crack.
I agree that might be the case but here we are talking about a really insane level of paranoidism.
-
Ok,that makes sense, i donr know how to use it, and im not a vendor,so i should be fine yeah?
shameless plug but I won't spam to 50 either
there is some PGP info in my first real post here
http://dkn255hz262ypmii.onion/index.php?topic=175158.0
hope it helps a bit
-
Might as well ask here, I heard that SR uses its own msg decryption as well?
Can you give more details? Do you mean you heard they unencrypt the information that is PGP encrypted with a vendor's public key? That is not practicable unless you have the private key (which only the vendor themselves would have the private key corresponding to their public key).
I heard that as well but I don't have any proof to present.
I ment that plain text msgs sent on SR are encrypted using their own system
-
Hi xir8r,
When you as a buyer enter a shipping address for an order, you enter it onto SR itself, and it is picked up/sent to the vendor. IF you put it in plain text, and SR was hacked or otherwise compromised, your shipping address, clearly legible, could be harvested. IF it is PGP encrypted with the vendor's public key, all that could be harvested is a meaningless jumble of encrypted code. It cannot be decrypted without the vendor's private key, which is known only to them, not to SR.
Your shipping address is the one thing that can link your real life to an order on SR. Given that most of what we all order on SR is illegal in many jurisdictions, do you want to take even the remotest chance that that link could be made?
I'll answer that for you - NO!
Search for the threads on PGP tutorials, and use PGP. A little practice and you will get it. Keep yourself safe, please, please, please. Use PGP.
-
If the tor browser is through the anonymous onion network, why do ppl still use PGP?
Mostly because it's Pretty Good
:-/ lame pun, I know, got to get to 50 somehow w/out spamming.
-
because its good for you...