[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Gmail

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Gmail
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Wed, 2 Sep 2009 14:55:54 -0400
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Wed, 02 Sep 2009 14:55:59 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type; bh=bgzlxZPlqcAozBpPxevnNkItM6cBpcMjfrGj08YMCsY=; b=h6HILquihjb0RJblztboLYEG0N0ek4e/xe7NjHfi6BTiuDfEPayFEVyIC3Q9tj5KkT TNDEngEQxnK2YMROFuCuNIlwdBrRHathOa+Q6aqI/THt5EadoMQuIsTbcTgrP7NsMb82 4Lm8sAtg0ZKAtzEmqYhNbcUCfOMAyw7ZrkykI=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=p1e8KmPvLZGyAGXJiJ0FGWEeDWf4pJoUZAy71pRrH3WZFYnOqVk9bxOeg5GdXvxroI ln0Dk9UY4fM/uc+fVqqnQCh8s5tefgSGM64Y818Q0donOPeORP/axFUCsKrOI8xX+tp2 GvpwAVPgkHwyrjYwY2fxeM07evnHIv6HFJM/U=
In-reply-to: <20090902134828.GW4508@xxxxxxxxx>
References: <d2e731a10908312144ld400bddld2fe907c9612a09d@xxxxxxxxxxxxxx> <1251862895.5631.1.camel@stormbringer> <20090902062233.GA19468@xxxxxxxxxxxxxxxxxxxxx> <200909020937.25484.praedor@xxxxxxxxx> <20090902134725.GV4508@xxxxxxxxx> <20090902134828.GW4508@xxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

> you can be absolutely certain that all your comms will be recorded/stored
>> That's why there are things like VPN, IMAP/POP over SSL and StartTLS.

Which only covers your transit to them. All your mail
between providers is still wide open.

>         (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))

Exactly. Everyone on the net seriously needs to be turning
on oppurtunistic encryption for all services. Crypto has little
cpu cost these days compared to the gain in privacy.

The last bit would be to store the data encrypted. That's easy
at the provider spindles, but breaks down if you want to provide your
own key for it. So you're left with OpenPGP, FUSE, etc.

Anyhow, whoever was going to put a table of providers
up on the wiki with little columns for https, imaps, pop3s, smtps,
'verification/tracking' requirements, etc... deserves some thanks.

Follow-Ups:
- Re: Gmail
  - From: Ted Smith

References:
- Gmail
  - From: grarpamp
- Re: Gmail
  - From: Ted Smith
- Re: Gmail
  - From: Ansgar Wiechers
- Re: Gmail
  - From: Praedor Atrebates
- Re: Gmail
  - From: Eugen Leitl
- Re: Gmail
  - From: Eugen Leitl

Prev by Author: Re: Announcing the tor-relays mailing list
Next by Author: Re: The Register article about making online anonymity illegal in Australia
Previous by thread: Re: Gmail
Next by thread: Re: Gmail
Index(es):
- Author
- Thread