Re: For newcomers -- sending secure & anonymous email.

[Anonymous Remailer (austria)]

In article <0b7835933a26ed76...@dizum.com>
Nomen Nescio <nob...@dizum.com> wrote:
>
> My two cents for any newcomers here:
>
> 1) Register using the Tor Browser (disable JavaScript in the
> Firefox Preferences and enable NoScript, so you'll be using
> Squirrel Mail) at the following Onion address:
>
> http://bitmailendavkbec.onion/
>
> 2) Run Gentle GPG (new, of course, and recently updated) from a
> triple-cascading TrueCrypt hidden volume with several keyfiles:
>
> http://sourceforge.net/projects/gentlegpg/
> http://www.truecrypt.org/
>
> 3) Use QuickSilver Lite via Tor to send email to the Bitmessage E-
> mail Gateway using the smtp snorky.mixmin.net, port 2525 using TLS:
>
> https://www.quicksilvermail.net/qslite/
>
> 4) Only READ encrypted email at the Bitmessage E-mail Gateway.
> Use Mixmaster to SEND encrypted email to the Bitmessage E-mail
> Gateway.
>
> 5) Verify all digital signatures using GPG.
>
> 6) Disable everything that you don't need (Firewire, autoplay, USB
> ports, etc.) and spoof everything which you can (MAC address, Wi-Fi
> access points, etc.) Use all security options available to you
> (such as PGP encryption in QuickSilver Lite.)
>
> 7) Maintain the physical security of your hardware at all times.
> (Use a tablet.)
>
> 8) Beware of keyloggers, so use Debian Linux and OpenBIOS with
> full system encryption. Inspect your systems regularly. (Should
> not be a problem if you are keeping your tablet with you!)
>
> 9) Use long passphrases greater than 30 characters whenever
> possible, easy for you to remember, impossible for others to guess -
> - Upper & lower case letters, numbers, symbols, punctuation
> characters, and at least one ALT control character ('Alt' + any 4-
> digit number).
>
> 10) Run Tails whenever possible:
>
> https://tails.boum.org/
>
> 11) Stick with open-source programs.
>
> Additional suggestions and/or criticisms are appreciated!

Use the poorman's envelope.

Type your document just like you would an email, then zip it up
with long password protection and email it. Txt the password or
email it separate email. Just don't refer to it as a password.
It's easy to set something up like this with another party.
.ZIP crackers are useless if the password is strong.

[Anonymous Remailer (austria)]

Although the new program gentlepgp would be better and easier, be
sure to use a good .zip program. Not all are equal. 7zip is
probably the best - 256 encryption.

[Anonymous Remailer (austria)]

In article <1b455e33fd2a8c13...@remailer.privacy.at>
"Anonymous Remailer (austria)" <mixm...@remailer.privacy.at> wrote:
> ....

> Although the new program gentlepgp would be better and easier, be
> sure to use a good .zip program. Not all are equal. 7zip is
> probably the best - 256 encryption.

The new WINRAR is now also offering AES-256 encryption. But 7Zip is
totally free.