9 Oct
2021
9 Oct
'21
1:43 a.m.
On Friday 08 October 2021 18:20:45 Michael wrote:
On Friday 08 October 2021 05:25:21 pm Edward wrote:
I also sort of expected that we might keep the list, make it totally
encrypted, and try to keep it more technical and less off-topic and rambling
in nature.
As for the potential problem of shared keys being used for Google webmail
interface (thus spoiling whatever benefits of using encryption?), this gives
us reason to pause and consider.
As for jabber, I was supposing that we might use some other feature besides
simple chat (although that would be possible between individuals). The jabber
servers support a lot of other things, including discord, IRC and multi-user
chat. (I wonder if it would support Matrix, etc.?)
We might run a few tests to try out different ideas, just to see what might
work. And by the way, we don't have to decide right this minute; but it makes
sense that we move toward some such solution.
Consider the alternative: that we leave ourselves -- our data, our hasty
remarks or cranky weirdness or unpopular beliefs -- just hanging there like
ripe fruit, waiting for some bot or spook to harvest them.
Bill
On 10/8/21 6:10 PM, William Morder via tde-users
wrote:
AFAIK it should be possible to make one key pair and share both keys with
the whole list, just for use with this list. Everyone sends on the public
key and everyone decodes on the private key. Yes, it technically violates
the concept of key pairs, but we're just trying to keep the list’s content
from being easily [data collected] and [censored] by [automated data
collecting] mail providers(/entities).
I’m going to presume that any list encryption is pointless if someone
installs the key pair on anything except a local mail client. E.g if
someone installs the key pair on their google web mail interface… (I
didn’t think of this until later.)
That presumption is why I suggested a forum type of replacement for the
user lists. I’m not that up on current ‘stuff’ so pretty much anything
that eliminates [automated data collecting] being easily tied to a
particular person and/or an entity being able to [censor] participation
works for me.
I don’t think there is any sort of perfect solution (maybe a tor onion
site, but ugh, that wouldn’t be user friendly at all.).
Best,
Michael
PS: I’m using [] around concepts, interchange with any type of ‘bad’
activity you want. To quote myself:
"It doesn't have to be xmpp/jabber. That might not be quite the right
tool for the job; but I am pretty sure there must be something similar
in concept that would serve our needs."
My original suggestion was simply that we move toward using encryption
for the TDE mailing list. It was Michael's idea to create
public/private keys for the list. However, that was rejected as too
user-unfriendly for noobs, which may be true.
It seems to me that some people just cannot be content until they have
their privacy thoroughly violated and the entire human race is turned
into slaves. Resistance is futile! We will all be assimilated!
So what is it to be, then? I don't especially care about what tool we
use, but we ought to decide to move toward something better.
Stripping email headers might at least be a good place to start. I
can't tell how many email I have accidentally sent to private email
addresses (or received them) just because people don't think to check
before they hit send.
Bill
I don't have an issue with the current e-mail list. I think it's good to
have, plus there is that reference kept online, if someone accidentally
deletes an e-mail.
Regarding encryption, I have seen OpenPGP icons in Thunderbird from some
of the e-mails coming in from the list, but have no idea how to set that
up. I also don't know if there is way to set it up so that it only
applies to the e-mail list and not to other e-mails.