 JohnInSJPremium
join:2003-09-22
San Jose, CA
 ·PHONE POWER
 ·Comcast
| reply to Mchart
Re: top 5 safest and most secure email providers ? said by Mchart:So while the NSA may or may not have the capabilities to crack your stuff - They can't. On top of that, i'm fairly certain they have bigger fish to fry. I know - I have several friends there. It was a joke, of sorts. As in, why are you worrying about the FBI reading your email? They either don't care, or there isn't a damn thing you can do to prevent them from reading your email.
I believe if they wish to read your email, they can offer you the choice of decrypting it for them, or going to jail for refusing to decrypt. But then again, I am not a lawyer, I'm only going on what I read via google "compelled to decrypt"
--
My place : »www.schettino.us |
|
Mele20Premium
join:2001-06-05
Hilo, HI
kudos:4 | reply to Frydays
»www.safe-mail.net/sites/safe-mai···ail.html |
|
1 edit | reply to Frydays
I'm certainly not an "expert" in the security of email but you also have to consider that if you are an using email client like Outlook or Thunderbird through your ISP, not all ISP mail servers are created equal in many areas including security. |
|
nonymousPremium
join:2003-09-08
Glendale, AZ Reviews:
·Callcentric
| reply to Mele20
Ok what is this for. They also have safe haven hosting on offshore accounts for business?
If this is your concern, then have your business domain hosted with Safe-haven, our offshore service. SafeHaven is the ideal solution for businesses and groups that demand the very highest level of privacy from scrutiny while still maintaining the freedom to access their accounts from any computer with an Internet connection. Having your data located offshore means that it is virtually impossible for third parties to gain physical access to the computers on which your files and messages are held.
SafeHaven gives you all the features and benefits of Safe-mail for Business with the additional security of an offshore server at the following great value prices:
Program Max # of addresses Total disk space Annual fee
Iron 5 200MB $225/year
Bronze 10 400MB $375/year
Silver 25 1GB $825/year
Ruby 50 2GB $1500/year
Gold 100 4GB $2850/year
Their email price for extra storage is also up there. To me they are going for a questionable clientele? |
|
| reply to Tempus45
said by Tempus45:Even PGP has its limitations. If served with a warrant, the Feds would have the capability to intercept key strokes and computer snapshots. Don't let them have access to your machine. Set up some sort of detection mechanism or keep the PC locked away in a secure room
I am a firm believer that security software nowadays have a back door that allow law enforcement to circumvent any security measures and precautions.
Nah. All good encryption software has open source code so we know that PGP/GPG are not back doored. Neither is Truecrypt.
--
Getting people to stop using windows is more or less the same as trying to get people to stop smoking tobacco products. They dont want to change; they are happy with slowly dying inside. -- munky99999 |
|
| reply to Mchart
said by Mchart:NSA (Or any DoD agency for that matter) is bound by the law to not touch *anything* that has to do with any 'five eyes' citizens. The caveat to that is unless it has been legally deemed that said person is a threat to said national entities. So while the NSA may or may not have the capabilities to crack your stuff - They can't. On top of that, i'm fairly certain they have bigger fish to fry. There is controversy within the crypto community about what NSA can do. There's not much doubt they are several years ahead of the "rest of us" where cryptanalysis is concerned, but most expert cryptologists do not believe they can crack algorithms like RSA or AES. However, they can launch massive dictionary attacks, but that's easy to defend against (but most people probably don't since people tend to be lazy).
But you make a good point; whatever NSA's capabilities, it's highly unlikely that they would get involved in the first place, even if one were running a major criminal enterprise. They simply don't deal with anything that's not a threat to national security. We already know the FBI cannot break the public ciphers like RSA/AES since several past cases have illustrated their helplessness with cracking PGP and other crypto standards.
To the OP: the bottom line here is that it doesn't matter what e-mail provider you use if your data is not being encrypted end-to-end. I have explained why this is and how to do it in my previous posts. Don't rely on providers like Hushmail since they aren't well vetted.
--
Getting people to stop using windows is more or less the same as trying to get people to stop smoking tobacco products. They dont want to change; they are happy with slowly dying inside. -- munky99999 |
|
| reply to DataRiker
said by DataRiker:This seems the best bet. 2048 seems a bit over kill though. Not sure about this but isn't over a certain bit illegal for "communication"? Perhaps in repressive nations, but not in America. The USA does have silly export laws regarding encryption, but those don't apply to *using* encryption here. This is how they got Phillip Zimmerman (creator of PGP) back in the early 90's -- they threatened him with prosecution for sending "munitions" overseas. The govt. was not happy that he was giving the rest of the world access to strong encryption.
And 2048 bits is basically considered the normal key size now. It's not recommended to go below that if creating new asymmetric keys. if you're using 1024 bit keys, it is time to upgrade as it probably wont be too long before 1024 bits is factored in public.
I think many people get confused by asymmetric vs. symmetric key sizes. Remember that symmetric keys will have smaller key sizes for the same amount of security. Therefore, 128 bit AES is about equal to 3072 bit RSA (according to NIST).
--
Getting people to stop using windows is more or less the same as trying to get people to stop smoking tobacco products. They dont want to change; they are happy with slowly dying inside. -- munky99999 |
|
1 edit | reply to Frydays
This is an excerpt in Wikipedia about Hushmail Controversy.
Until September 2007, Hushmail received generally favorable reviews in the press. It was believed that possible threats, such as demands from the legal system to reveal the content of traffic through the system, were not as imminent in Canada as they are in the United States and if data were to be handed over encrypted messages would be available only in encrypted form. However, recent developments have led to doubts among security-conscious users about Hushmail's security and concern over a backdoor in an OpenPGP service. Hushmail has turned over cleartext copies of private e-mail messages associated with several addresses at the request of law enforcement agencies under a Mutual Legal Assistance Treaty with the United States.
»en.wikipedia.org/wiki/Hushmail
--
It is true that liberty is precious, but is it so precious it must be rationed? |
|
|
|
 MJimLayAKA FlexBaudPremium
join:2004-10-06
Pensacola, FL
kudos:2
1 edit | reply to Frydays
»www.appriver.com
»www.youtube.com/watch?v=g8oQiLIi5CY |
|
MoodyPremium
join:2005-07-17
Dog House | reply to Frydays
said by Frydays: what are the top 5 most secure email providers around free or pay name the top 5 please There's no such thing as 100% secure when you have to rely on others infrastructure, but coste's as close as you're ever going to get to it. »www.cotse.net/ Look over what all they offer and pick your poison.
Tell him RedLeg sent you! 
--
Gary
"When freedom is outlawed, only outlaws will be free!" |
|
DrGunn
join:2010-07-16
San Diego, CA | reply to Frydays
Just use Gmail. Seriously. It's free, the spamfilter can't be beat, and they use » for all connections. |
|
 chrisretusnRetiredPremium
join:2007-08-13
Philippines
kudos:1 | said by DrGunn:Just use Gmail. Seriously. It's free, the spamfilter can't be beat, and they use » for all connections. https only make the connection between you can Gmail secure.
--
Chris
Living in Paradise!! |
|
TheMGPremium
join:2007-09-04
Canada
kudos:1
4 edits | reply to Velnias
said by Velnias:Why do you think, companies like Google, spend a lot of money to maintain "free" email servers? For the truckloads of ad revenues it gives them, which most certainly far exceeds the amount of money necessary to maintain the service.
The service is essenitally paid for through advertising. No such thing as "free".
That doesn't stop me from using AdBlock Plus though!
Back on the original topic: there is no such thing as 100% secure email unless the message is encrypted by the original sender and then decrypted by the intended recipient. The mail provider has not much to do with it.
All the mail provider can really do is ensure security of the communication between your computer and their servers (ie: SSL encryption) and keep their servers and web access free of exploits that would enable hackers to gain access to your inbox. Anything more than that is strictly the end-user's responsibility. |
|
2 edits | reply to KodiacZiller
Re: top 5 safest and most secure email providers ? If your absolutely paranoid set up a short cipher with a friend, they are uncrackable ( assuming the key is longer than the message ) |
|
| reply to Frydays
What I don't understand is why anyone would want to hide their email from the FBI. Why is your email so important that it needs to be hidden from them? While I do understand people want their privacy, anyone who says they want to hide email from the FBI automatically rings a bell and often gets reported to said three letter agency.  |
|
Mele20Premium
join:2001-06-05
Hilo, HI
kudos:4 | reply to nonymous
I thought this thread was about PERSONAL email not business. Safe-Mail is free for personal users unless you need a lot of storage space. I'd think the Israelis are good at secure mail.
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson |
|
chrisretusnRetiredPremium
join:2007-08-13
Philippines
kudos:1
2 edits | said by Mele20:I thought this thread was about PERSONAL email not business. Safe-Mail is free for personal users unless you need a lot of storage space. I'd think the Israelis are good at secure mail. I did to. Safe-Mail is good.
For free accounts they also allow IMAP and POP3, but there are restrictions. If you don't log in once a month, POP3 / IMAP is disabled. Logging in via their web interface re-enables it. I just wait until my client errors out and then log in to re-enable POP3 (what I use). Second catch is no SMTP access. You can of course log in via the web interface to send messages.
As for security, it's secure for between other Safe-Mail users, once a message leaves their system it is no longer secure. I also agree that Israelis are good at secure mail (at least one would think so), however, it is really all about who you trust.
--
Chris
Living in Paradise!! |
|
Mele20Premium
join:2001-06-05
Hilo, HI
kudos:4 | Geez....I have been dumb! What I don't like about it is that I thought it was web only. But, I never tried setting it up in OE. DUH.
I don't like any of the themes it uses for the web interface. So, I haven't been using it much. I'm going to go login and then set it up in OE. (I have had myrealbox set up in OE for years so I don't why I didn't I could do that with this).
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson |
|
 glnz
join:2006-11-26
New York, NY | I have some relevant questions for this knowledgeable group. Please let me have your advice at
»Is Verizon email UNencrypted ??
Thanks. |
|
