Silk Road forums
Discussion => Security => Topic started by: flipside on April 30, 2012, 02:45 am
-
[We have intentionally edited the title of this thread to reflect the current changes, and to hopefully inspire more conversation/advice]
Greetings friends...
Since the general, 'overall' (hopefully) temporary demise of Tormail, we have been seeking the "next best bet" to continue to offer our customers secure, GPG encrypted email contact.
We need a 100% Tor-accessible, IMAP/POP/STMP capable email provider. We would (obviously) 'prefer' an "anonymity/privacy-conscious" provider. At this point, we are tossed up between Riseup.net and Lavabit.com.
We would prefer Riseup and could "really" use 2 sponsors to get an account ASAP.
Any Riseup users out there willing to help us out?
From our research, Lavabit.com seems to be a better choice (in general) for the "average" user/buyer as far as the ease of obtaining/setting up a free (and 'ad-free') account with full IMAP/POP/STMP capabilities. They offer 2 free and multiple paid options. Just be sure to register your account using a public computer, public or otherwise anon wi-fi w/MAC spoofing, ect, as Java is required to sign up. After registration, java should not be required if using a mailclient and it "should" be Tor-accessible from there on out. (Please correct me if I am wrong.)
Not sure about the most secure server/connection/password settings that should be configured, ect if using Thunderbird, ect. Perhaps someone could chime in?
However, although Riseup accounts are harder to obtain, we feel they are an equal (if not better) 'overall' choice, "if" you are using Tor/GPG. (REQUIRED with either service though for true security.)
Are there perhaps 2 Riseup users out there willing to sponsor us so we can provide secure GPG encrypted email to our customers ASAP?
Gift certificates to our shop are 'very' possible for interested parties that may be able to help us... ;)
Or does anyone perhaps have an even "better" suggestion? If you say Hushmail we will Kismac and delete your entire existence. j/k ;)
Thank you my friends!
Peace
The Flipside Crew
-
Never mind folks. We seem to have gotten our "approval" already!
Riseup is very "internet privacy activist-minded". Give them a good reason why you should have an account and you don't need 2 sponsors. Something legit you truly believe in. Unjust laws, Internet privacy, Tor/GPG, ect....and it seems you "may" get an account quite quickly. We did! :)
Again. Our (current) opinion is that Riseup.net is the best "overall" current provider. 100% Tor-accessible, and even have 'java -free' Squirrel Mail webservice like Tormail does!
And even provide "virtual keyboards" with their webservice to avoid keyloggers on public computers and otherwise!
These guys ROCK! Check out their site! It's a WEALTH of useful information. These guys KNOW what they are doing.
They are our #1 choice. And DONATE! :)
(Still ANY advice as to the most secure Tbird settings would still be VERY much appreciated. It's NOT Tormail. Any thoughts friends and fam?)
Lavabit.com is a close second though. And "much" easier to set up an account.
Just use Tor and GPG with both. Sign up with Lavabit with caution (explained above).
And listen to ALL of Pretty Lights and "Iz & Diz - Mouth" (No assembly Firm Dot Mix) ------- "Bass, treble, mid, high..." ;)
That's REQUIRED! :)
Peace
The Flipside Crew
-
So what's wrong with tormail.org?
-
172,
There are multiple threads describing the "overall" Tormail situation, but primarily (for now) Tormail addresses cannot send or receive emails from other domains/email providers. They are also not currently accepting new accounts.
Peace
The Flipside Crew
-
the most recent post on their url says they just can't use the .net one anymore, so they moved on to .org. You're right though in that it's very suspicious. I just checked with the website ( http://jhiwjjlqpyawmpjx.onion/ ) and i can still access the create new accounts page. I don't know, it still seems like the site is okay.
-
It's not really suspicious. Any domain (.net/.org, ect) is just a shell around their .onion address.
Existing Tormail users can still communicate fine with each other (within the Tormail servers) using their new .org addresses. It's just outside domains/emails that is the problem. And new user registrations.
-
[EDIT]
You are indeed correct!
It seems Tormail.org is now again open for new registrations!!! :)
</relief>
Peace
The Flipside Crew
-
*whatevermyemailnameis*@tormail.org is reachable from external services, specifically gmail as of this post.
I am receiving from multiple sources as long as they hit @tormail.ORG and not @tormail.NET .
-
FBI seizes riseup.net server
http://anarchistnews.org/content/fbi-seizes-riseupnet-server
-
souledout,
Check the main Riseup site/press release. Absolutely NO customer information was compromised.
The server seized was simply one they were hosting for a separate client, "completely" unrelated to their email service.
---------------
Server Seizure Update
20 Apr 06:18
The server that was seized does not have any Riseup data on it. The machine was operated by the European Counter Network (“ECN”), an Italian technology collective. To repeat: no Riseup service or user data is on this machine. No Riseup keys or certificates are on the machine. Furthermore, the root filesystem of this machine is encrypted.
Full press release: riseup.net/seizure-2012-april
-
*whatevermyemailnameis*@tormail.org is reachable from external services, specifically gmail as of this post.
I am receiving from multiple sources as long as they hit @tormail.ORG and not @tormail.NET .
GREAT NEWS p3!
It seems Tormail.org is now (fully) up and running then, yeah? :)
AWESOME!!!!
Riseup and Lavabit are still 2 other great (backup?) or primary services though...for tha rekid! ;)
Truly a relief with Tormail though...only took 10 days. Not bad (imo). :)
Peace
-
*whatevermyemailnameis*@tormail.org is reachable from external services, specifically gmail as of this post.
I am receiving from multiple sources as long as they hit @tormail.ORG and not @tormail.NET .
GREAT NEWS p3!
It seems Tormail.org is now (fully) up and running then, yeah? :)
AWESOME!!!!
Riseup and Lavabit are still 2 other great (backup?) or primary services though...for tha rekid! ;)
Truly a relief with Tormail though...only took 10 days. Not bad (imo). :)
Peace
Flipside,
Was likely much quicker than 10 days. I expected biz email to me@tormail.net, requested a resend to me@tormail.org on the 23nd and got the email on the 24th. So it was no more than 4 days to resumption of service.. might have been within 24 hours. The tormail folks are top notch in my book.
-
We still can't send emails from a Tormail.org (or .net) address to outside email domains/servers.
So, I don't know. "Hopefully" everything is working again as you say. Just not for us. Yet.
Working on it.
(Hence the avatar) ;)
Peace
[p3? Were your incoming/outgoing emails from other Tormail addresses? That 'would' make a BIG difference.]
-
Would quite like a riseup account myself. Anyone hook me up with invites?
-
Limitless.....maybe....? ;)
[edit: yet "ANOTHER" -1 'negative' karma' point since posting "this" thread? Really? Just-a-wow! :) ]
This (anonymous) "karma" policy "really" NEEDS 2B addressed. (Competing vendors?) We "really" don't know/understand... :(
But we -->REALLY<-- don't care anyways. So keep it up losers! :)
...our 5/5-100% Reputation, posts, and great advice speak for themselves. So FU! Get a "real" life, lol... :)
Peace
The Flipside Crew
-
maybe.... ;)
Guuuu ooon my son....
-
Limitless...
Try to apply first. With ALL of us being Tor/GPG/SR activists, we ALL have plenty of good reasons to deserve an account from Riseup.
Read their guidelines. Then apply....
If that "truly" fails (it shouldn't. just make it it good. and legit).....then contact us, ok? ;)
Peace
The Flipside Crew
-
Well Tormail.org seems to be working 100% again for us now! Sending/receiving from external domains, ect.
Yay! :)
Peace
TFC
-
After lengthy conversations with some "very" knowledgeable fellow Roaders and other close, longtime vendor friends over the last week, we feel there are 2-3 "even better" secure, email options to Riseup or Lavabit.
We will update shortly after further discussion.
In the mean time, 'Tormail' (now Tormail.org) is back up and running 100% and is a 'very' good option (if not the best currently) for the average user, "if" used with GPG.
However. We still "HIGHLY" (pun intended) recommend reading thru Riseup.net's website! Seriously!
It has some the most accurate, useful, GPG/Email/Tor/Net-privacy/Encryption, ect knowledge we have "ever" seen compiled in one place!
Quite amazing really! TRULY a "must read"...
Just read it goofball... ;)
https://www.riseup.net
Peace
TFC