These scenarios are important ones.
One thing I've found with my own "emergency" tools is that they aren't
used enough so that they are up to date with other software and hardware
changes. That means that the tools have to be also part of regular usage
streams, even if somehow isolated from regular use. Or else there has to
be a regular test message, but that gets into the same problem the cell
phone "colour" alerts have. My wife and I think you could get elected
with 95% of the population if you promised (name your favourite TV program)
would not be interrupted by the awful noise to let you know some kid on the
other side of Ontario ran away from home. For us, it's that Jeopardy answer
we want to hear.
JN
On 2024-12-07 11:16, rob [ at ] echlin [ dot ] ca via linux wrote:
Let me oopsify.
I asked what tools people here recommended for encrypted messages "for personal use".
But I confused the issue by first asking if we wanted a secure messaging solution for this group. Sorry!
One scenario: I would like to connect securely using my phone (text for sure) with security people that I know on the
webs, or in a security consulting firm.
Another scenario: Connect (text, maybe voice) to outside security people and co-workers during a security incident, when
my work email and my whole work machine, could be assumed pwned.
On 2024-12-07 09:10, Jean-Francois Messier via linux wrote:
Let's remember this is a public list. If one wants to do secure messaging, this is usually to a restricted list of
recipients, each with their own public key, regardless of the encryption or security software. About having a shared
keypair, the key is no more public. And to encrypt the message to each and every of us, either the sender has all
public keys, or the mail relay has the ability to decrypt the received message, and re-encrypt it to each and everyone
individually on the list.
As for verifying the authenticity of a given email, this means that everyone has to sign it, and that anyone who wants
to verify the signature of a given message, the recipient needs to have the public key of the sender, as well as some
trust in this public key, beyond just downloading it from a key server.
JFM
On 2024-12-06 20:42, rob [ at ] echlin [ dot ] ca via linux wrote:
Hi
Re: "China-linked attacks on U.S. telecom networks"
Do we want to have a secure messaging solution for this group?
Is there a preferred encrypted messaging solution for personal use?
Tom's Guide has a report that seems useful.
https://www.tomsguide.com/reference/best-encrypted-messaging-apps
Thanks!
Rob
To unsubscribe send a blank message to linux+unsubscribe [ at ] linux-ottawa [ dot ] org
To get help send a blank message to linux+help [ at ] linux-ottawa [ dot ] org
To visit the archives: https://lists.linux-ottawa.org
To unsubscribe send a blank message to linux+unsubscribe [ at ] linux-ottawa [ dot ] org
To get help send a blank message to linux+help [ at ] linux-ottawa [ dot ] org
To visit the archives: https://lists.linux-ottawa.org
To unsubscribe send a blank message to linux+unsubscribe [ at ] linux-ottawa [ dot ] org
To get help send a blank message to linux+help [ at ] linux-ottawa [ dot ] org
To visit the archives: https://lists.linux-ottawa.org