current state of PGP being broken

[George Chapman]

"Brian Sullivan -MVP" <bri...@meetingbywire.com> wrote in message
news:e$bpOOYvBHA.224@tkmsftngp07...

> Messenger IM Messages are P2S2P -- so Bill could be listening (not that he
> would care)-- other Messenger operations are P2P.
>
Bill, did you ever see the movie ANTI-TRUST. I would think it would be
incredibly tempting for someone in Bill's position to "filter" all traffic
that he could control (via his spin offs and enticing free services--eg.
email) with a list of select keywords (eg. patent; "new concept"..etc.) and
"harvest" whatever he likes from the net.

I have no doubt that the technology exists and it wouldn't take too much
imagination as to how to apply it to circumvent any personal security the
average user could employ.
Take for example:
-capture users keystrokes
-encrypt them (thus circumventing any sniffer)
-timeshift the relay of them back home (so as to circumvent any correlation
in time by the suspicious user)

Consider Also that:
-any Application (MS ones in particular) could capture keystrokes and
masquerade as another app (which the user has allowed through the firewall)
thus "tunneling" unauthorized information back home.
As Harry Smith states in his post: just use IP to IP to circumvent the
hole....but that doesn't avoid sniffers anywhere in the path and the point I
make directly above.

So maybe the best approach is to use totally secure VPN's always.

Steve(@grc.com): what do you think....how would one even concieve of
protecting
against this????

[MOTAR the imperious]

All that and if you have the nerve to reverse engineer the software to
see what it's doing.... you become the criminal by law. How does that
rule go? "You are only guilty if you get caught".... isn't that it?

MOTAR the imperious

MOTAR's home site:
http://www.angelfire.com/rock/motar/index.html