[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Encrypted Web Pages?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Encrypted Web Pages?
From: Martin Fick <mogulguy@xxxxxxxxx>
Date: Mon, 17 Dec 2007 11:57:26 -0800 (PST)
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Mon, 17 Dec 2007 14:58:13 -0500
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=dnWh/Qh+txrvJZaDJl8pD0bBO1TZJkEkT9Z/nP5uS0u4bb4aJ1zDHCKEMMFEFytNktR7o8MHTZfb94bMIguDgnblCwGnm0regVayeMFBKYxPTbmlxRn2OhikTb2aBiiuSjgrb9j4bqrjkAdmmpmWO625xdSz3Rg2x2J/HyB0nfg=;
In-reply-to: <25683.79320.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

--- Martin Fick <mogulguy@xxxxxxxxx> wrote:
> --- Michael Holstein <michael.holstein@xxxxxxxxxxx>
> wrote:
> > 
> > My thought on Java was to be able to 
> > automate the key scheme within the 
> > browser, versus requiring them download 
> > a .gz.gpg file and decrypt it on their 
> > own. A (sort-of) working example of 
> > this is how HushMail does it (using 
> > Java to code the PGP stuff).
> 
> Forgive me for not understanding, but 
> what prevents HushMail from decoding
> the messages?

Ah, from HushMail themselves:

https://www.hushmail.com/hushmail/showHelpFile.php?file=compatibility/java/index.html

  "Attacker controls webserver while 
   you are accessing your email

   With Java:
   Not protected, but evidence of the 
   attack will remain on your computer

   Without Java:
   Not protected, no evidence of attack 
   on your computer"

Seems pretty untrustworthy to me.  There
is a hidden messaging/mail service in 
torland which should be more trustworthy 
than HushMail, but, of course, I don't
think that it is integrated with the 
browser like I would like.

-Martin



      ____________________________________________________________________________________
Looking for last minute shopping deals?  
Find them fast with Yahoo! Search.  http://tools.search.yahoo.com/newsearch/category.php?category=shopping

References:
- Re: Encrypted Web Pages?
  - From: Martin Fick

Prev by Author: Re: Encrypted Web Pages?
Next by Author: Re: Encrypted Web Pages?
Previous by thread: Re: Encrypted Web Pages?
Next by thread: Re: Encrypted Web Pages?
Index(es):
- Author
- Thread