gmail forums exploded

The new gmail in box, compose, and forcing hang outs on you has caused

lots of threads like
productforums.google.com/forum/#!topic/gmail/yl_XPO5Hw6Y[726-750-false]

with wonderfully succinct feedback as:

It's junk,

It fucking sucks

It's horible horse shit-how do I change to classic.

And more

============================================================
FRIAM Applied Complexity Group listserv
Meets Fridays 9a-11:30 at cafe at St. John's College
to unsubscribe http://redfish.com/mailman/listinfo/friam_redfish.com

I switched to an  IMAP client (T-Bird) 3 days ago when their latest nonsense started.

try
https:  //   ecomail   DOT   at

Marcus, et al -

Of course, for U.S. citizens, using an overseas account could mean jumping out of the frying pan and into the fire!

Especially those with security clearances working at national scientific laboratories?

Lavabit's guy pointed out that trying to provide encrypted e-mail services *with* (geographic) ties to the US was a *very bad idea*...   so you make a very good point... if you go *offshore* for your encrypted e-mail services you are *inviting* the NSA to intercept, record, (attempt to) decrypt, read, etc.  your e-mail.  Of course, now that it is accepted that they don't need for you to be presumably communicating with a foriegn entity to do the same, then "why not?" ...

The analogy of "needle in a haystack" has already been used.   It seems as if using overtly encrypted e-mail services is like putting your needle in a somewhat difficult to open envelope.  It makes it easier to find the needles (because they are now in  easily identifiable envelopes) but harder to read (open) them?  

Maybe the Zuni or the Basque peoples will all join EFF and offer their services as code-talkers?   Where's Homer Kaywumptewa when you need him (one of my father's Zuni friends while I was growing up)?

Whatever happened to Google's "Offshore Data Centers"?

https://sites.google.com/a/opensailing.net/protei/news/googlespatentforunderwaterdatacenter



Steganography is where the future lies.    In case you wonder why my e-mails are always so long and circuitous... it provides more signal to act as noise to hide the real signal in (hardly).

- Steve
    What a tangled web we weave!

On 8/17/13 12:05 PM, Sarbajit Roy wrote:

try
https:  //   ecomail   DOT   at

That server does do TLS, and there's AES-256 encryption on the site itself.
Looks like he is a likely to be an actual person..  :-)
http://muenchen.piratenpartei.de/author/muenchen/

Of course, for U.S. citizens, using an overseas account could mean jumping out of the frying pan and into the fire!

Marcus

============================================================
FRIAM Applied Complexity Group listserv
Meets Fridays 9a-11:30 at cafe at St. John's College
to unsubscribe http://redfish.com/mailman/listinfo/friam_redfish.com

On 8/16/13 9:13 PM, Sarbajit Roy wrote:

I switched to an  IMAP client (T-Bird) 3 days ago when their latest nonsense started.

Speaking of e-mail providers, I've noticed that a some of my providers don't provide TLS encryption.
Can anyone suggest one that passes http://www.checktls.com/?

The usual suspects are surely all PRISM-equipped by now, so I was thinking of something off the beaten path.  ;-)

Of course, for U.S. citizens, using an overseas account could mean jumping out of the frying pan and into the fire!

Especially those with security clearances working at national scientific laboratories?

The analogy of "needle in a haystack" has already been used.   It seems as if using overtly encrypted e-mail services is like putting your needle in a somewhat difficult to open envelope.  It makes it easier to find the needles (because they are now in  easily identifiable envelopes) but harder to read (open) them? 

HOw do we (even) know that checktls.com isn't some kind of honeypot, trying to get us to signal our potential riskiness by using it to test our e-mail service?

I loved the defense offered in http://www.nytimes.com/2013/08/17/us/nsa-calls-violations-of-privacy-minuscule.html, that 2776 mistakes in a year were nothing to get excited over, they're making 20 million queries a month.  I wonder when we were going to find out that number in the normal course of events.

On 8/17/13 2:32 PM, Steve Smith wrote:

HOw do we (even) know that checktls.com isn't some kind of honeypot, trying to get us to signal our potential riskiness by using it to test our e-mail service?

You can do it by hand, it's just a convenience.  They pretty much show you the (e.g. telnet) commands to use.  I just mentioned that URL in the hopes someone would say "Mine ISP does!" so that I could give them my money instead.

Marcus

============================================================
FRIAM Applied Complexity Group listserv
Meets Fridays 9a-11:30 at cafe at St. John's College
to unsubscribe http://redfish.com/mailman/listinfo/friam_redfish.com

I understand that I can check the handshakes, transmissions, etc by hand (telnet or a simple program I write myself)... what I'm offering is that I don't know how to tell that checktls.com isn't a honeypot, looking for people who "act guilty" by trying to secure their communications.

yes, these are the fruits of a paranoid mind, but just because you are paranoid, *doesn't* mean they aren't out to get you.

2) is a double edged sword. Being concerned about encryption email routing and storage has merit if the trolling is simply putting up a wall, saying "move along, nothing here".  But it also puts up a sign saying "I have a reason to hide"

My guess is that all of us using any sort of extra measures, such as encryption, are definitely on the NSA books.

On Haystacks:  There are two types of cracking that can occur to an individual

1 - Targeted: The bad guy (NSA, a malicious cracker...) is after you specifically.

2 - Non-Targeted: The bad guy casts a broad net, or inspects a big haystack, for exposed individuals

If 1), your chances are really low of avoiding being hacked unless the bad guy is novice.

2) is a double edged sword. Being concerned about encryption email routing and storage has merit if the trolling is simply putting up a wall, saying "move along, nothing here".  But it also puts up a sign saying "I have a reason to hide"

My guess is that all of us using any sort of extra measures, such as encryption, are definitely on the NSA books.

   -- Owen

On Sat, Aug 17, 2013 at 5:35 PM, Steve Smith <[hidden email]> wrote:

Marcus

Public advocacy for having ubiquitous secure transfers is a stronger signal for them to contemplate.

Agreed.

yes, these are the fruits of a paranoid mind, but just because you are paranoid, *doesn't* mean they aren't out to get you.

Speaking of paranoia, here's a little Thunderbird add-in that aims to check that all of the e-mail hops were secure.  It's a little buggy, but a nice idea (double check its work if it gives you a happy face).

I get happy faces over the strangest things... and in fact, I like highwire work without checking the net before I go up... it just feels like bad juju.  It is merely important (to me) to know that I *can* check the net if I choose to... that it is checkable and I am competent to do so and nobody gets too wIerded out if I do.

https://addons.mozilla.org/en-US/thunderbird/addon/paranoia/

- Steve

============================================================
FRIAM Applied Complexity Group listserv
Meets Fridays 9a-11:30 at cafe at St. John's College
to unsubscribe http://redfish.com/mailman/listinfo/friam_redfish.com

============================================================
FRIAM Applied Complexity Group listserv
Meets Fridays 9a-11:30 at cafe at St. John's College
to unsubscribe http://redfish.com/mailman/listinfo/friam_redfish.com