Comments on: PGP/GPG for GMail http://blog.spikethis.net/2008/05/19/encrypted-gmail/ My varied life... in a nutshell Sat, 13 Sep 2008 00:48:57 +0000 http://wordpress.com/ hourly 1 By: uhh http://blog.spikethis.net/2008/05/19/encrypted-gmail/#comment-77 uhh Sat, 13 Sep 2008 00:48:57 +0000 http://alexlewis.wordpress.com/?p=40#comment-77 "but if you read an encrypted email in gmail like this, you are sending unencrypted data from gmail servers (Santa Clara, maybe? probably right off amphitheater drive, actually) all the way through the net to your home machine through to the browser." uhh, like.. isn't the point of installing this firefox extension so it can do the encryption/decryption at your end? what are you talking about "gmail sends plaintext back to your pc from santa clara?" gmail never sees your private key, and it never sees anything but an encrypted message... so how does it get plaintext? and as far as the NSA paranoia is concerned, well.. it's valid I guess *if you're trying to hide your email from the NSA.* I'm not. I'm trying to secure it from identity thieves and lesser, albeit malicious, entities than the NSA. Leroy: is having your friends perceive you as "dorky" of greater concern to you than your privacy and your identity? Encryption is not "looked down upon by everyone except geeks." It may be in your world, but this is the first I heard of it. And encryption is not just used by people who have some "secret" to hide as you've implied. In fact it's used probably a lot more than you know. If you think the NSA is looking into everyone who's sending around encrypted messages then you're naive. “but if you read an encrypted email in gmail like this, you are sending unencrypted data from gmail servers (Santa Clara, maybe? probably right off amphitheater drive, actually) all the way through the net to your home machine through to the browser.”

uhh, like.. isn’t the point of installing this firefox extension so it can do the encryption/decryption at your end? what are you talking about “gmail sends plaintext back to your pc from santa clara?” gmail never sees your private key, and it never sees anything but an encrypted message… so how does it get plaintext?

and as far as the NSA paranoia is concerned, well.. it’s valid I guess *if you’re trying to hide your email from the NSA.*

I’m not.

I’m trying to secure it from identity thieves and lesser, albeit malicious, entities than the NSA.

Leroy: is having your friends perceive you as “dorky” of greater concern to you than your privacy and your identity?

Encryption is not “looked down upon by everyone except geeks.” It may be in your world, but this is the first I heard of it.

And encryption is not just used by people who have some “secret” to hide as you’ve implied. In fact it’s used probably a lot more than you know. If you think the NSA is looking into everyone who’s sending around encrypted messages then you’re naive.

]]> By: Email safe and easy | Learn fast, easy and with fun http://blog.spikethis.net/2008/05/19/encrypted-gmail/#comment-66 Email safe and easy | Learn fast, easy and with fun Fri, 13 Jun 2008 18:11:17 +0000 http://alexlewis.wordpress.com/?p=40#comment-66 [...] that comparatively I like firefox addons for gmail, free POP3 forwarding, filters, color labeling, encryption and google [...] [...] that comparatively I like firefox addons for gmail, free POP3 forwarding, filters, color labeling, encryption and google [...]

]]> By: zep http://blog.spikethis.net/2008/05/19/encrypted-gmail/#comment-58 zep Thu, 22 May 2008 14:37:27 +0000 http://alexlewis.wordpress.com/?p=40#comment-58 Since we seem to be on the thread of NSA/FBI interception, I thought I'd mention that just because you use p/gpg on an email doesn't mean it's completely safe from eavesdropping. granted mail servers are many and that's one of the easier places for things to be intercepted; but if you read an encrypted email in gmail like this, you are sending unencrypted data from gmail servers (Santa Clara, maybe? probably right off amphitheater drive, actually) all the way through the net to your home machine through to the browser. So if you really wanna be secret & secure, you still need to pull the fully encrypted message to your (secured) home box and do the decryption there. sorry for comment spam :) Since we seem to be on the thread of NSA/FBI interception, I thought I’d mention that just because you use p/gpg on an email doesn’t mean it’s completely safe from eavesdropping. granted mail servers are many and that’s one of the easier places for things to be intercepted; but if you read an encrypted email in gmail like this, you are sending unencrypted data from gmail servers (Santa Clara, maybe? probably right off amphitheater drive, actually) all the way through the net to your home machine through to the browser. So if you really wanna be secret & secure, you still need to pull the fully encrypted message to your (secured) home box and do the decryption there.

sorry for comment spam :)

]]> By: anonymous email http://blog.spikethis.net/2008/05/19/encrypted-gmail/#comment-57 anonymous email Wed, 21 May 2008 03:39:18 +0000 http://alexlewis.wordpress.com/?p=40#comment-57 Always remember, your PGP key is as strong as your password is. The NSA can crack passwords like "123456" i a few seconds. ....and...GNUPG rocks! Always remember, your PGP key is as strong as your password is. The NSA can crack passwords like “123456″ i a few seconds.
….and…GNUPG rocks!

]]> By: zep http://blog.spikethis.net/2008/05/19/encrypted-gmail/#comment-56 zep Tue, 20 May 2008 22:38:21 +0000 http://alexlewis.wordpress.com/?p=40#comment-56 whoa. I just got this as an ad in gmail: Google Email Encryption - www.google.com/a/security - Solve your business security issues by encrypting emails. how amusing. and they charge for it. fun. whoa. I just got this as an ad in gmail:
Google Email Encryption – http://www.google.com/a/security – Solve your business security issues by encrypting emails.
how amusing. and they charge for it. fun.

]]> By: zep http://blog.spikethis.net/2008/05/19/encrypted-gmail/#comment-55 zep Tue, 20 May 2008 20:21:49 +0000 http://alexlewis.wordpress.com/?p=40#comment-55 just because someone can (someone read as NSA or any other TLA .gov peoples) do something doesn't mean that [they should|it should be tolerated], IMHO. and having nothing to hide doesn't mean that you don't still want to be able to be sure what your sending doesn't get copied or possibly modified along the way (signatures are great). just because someone can (someone read as NSA or any other TLA .gov peoples) do something doesn’t mean that [they should|it should be tolerated], IMHO.

and having nothing to hide doesn’t mean that you don’t still want to be able to be sure what your sending doesn’t get copied or possibly modified along the way (signatures are great).

]]> By: Alex http://blog.spikethis.net/2008/05/19/encrypted-gmail/#comment-54 Alex Tue, 20 May 2008 19:02:13 +0000 http://alexlewis.wordpress.com/?p=40#comment-54 Good point Leroy. As the Internet becomes easier and easier to use so do previously "geek only" tools. I remember the days when only "nerds" had analog "phone handset on top" modems and dialed into Woz's BBS. Now almost everyone has a computer and access to the internet. Tools like FireGPG make something previously complex vey simple. I believe it's that kind of thinking that drives innovation in the modern 'Net world. Good point Leroy. As the Internet becomes easier and easier to use so do previously “geek only” tools. I remember the days when only “nerds” had analog “phone handset on top” modems and dialed into Woz’s BBS. Now almost everyone has a computer and access to the internet. Tools like FireGPG make something previously complex vey simple. I believe it’s that kind of thinking that drives innovation in the modern ‘Net world.

]]> By: Leroy Glinchy http://blog.spikethis.net/2008/05/19/encrypted-gmail/#comment-53 Leroy Glinchy Tue, 20 May 2008 15:50:21 +0000 http://alexlewis.wordpress.com/?p=40#comment-53 I agree that privacy is important in email. However, there are troubles with encryption: 1. My friends think it is dorky. 2. The govenment does not like it. In fact, it gets their attention which is not good. I don't want to look like I am hiding anything. Therefore, agent #7, it is OK to read all my email. Hell, I'LL foreward them to you as I HAVE NOTHING TO HIDE. In fact, I hate all terrorists whoever they are. If new people are named terrorists, I hate them all ready, whoever they decide. Nepal, Bhutan, whatever. If they named me a terrorist--which they won't--I'd hate myself. 3. The NSA has probably all ready cracked it. 4. My friends think it's dorky. Other than that, I'd gladly use it. I don't think what I tell my wife is anyone's business. But encryption is looked down upon by everyone but us geeks. I know email is insecure, in fact, I kind of want to put all my emails online somehow, automatically. Therefore, when I write email, I'll be more careful. However, I feel that this might break some kind of wiretapping law. Anyway, I hope you and agent #7 have a nice day. I agree that privacy is important in email. However, there are troubles with encryption:

1. My friends think it is dorky.
2. The govenment does not like it. In fact, it gets their attention which is not good. I don’t want to look like I am hiding anything. Therefore, agent #7, it is OK to read all my email. Hell, I’LL foreward them to you as I HAVE NOTHING TO HIDE. In fact, I hate all terrorists whoever they are. If new people are named terrorists, I hate them all ready, whoever they decide. Nepal, Bhutan, whatever. If they named me a terrorist–which they won’t–I’d hate myself.
3. The NSA has probably all ready cracked it.
4. My friends think it’s dorky.

Other than that, I’d gladly use it. I don’t think what I tell my wife is anyone’s business. But encryption is looked down upon by everyone but us geeks.

I know email is insecure, in fact, I kind of want to put all my emails online somehow, automatically. Therefore, when I write email, I’ll be more careful. However, I feel that this might break some kind of wiretapping law.

Anyway, I hope you and agent #7 have a nice day.

]]>