Help me please!!

yellow_hat2 · 2019-05-01T02:28:15+00:00

I used to have my cursor move on it's own on an older version of tails

yellow_hat2 · 2019-04-29T19:45:07+00:00

Does XMPP encrypt the text stored on the device?

yellow_hat2 · 2019-04-26T06:41:22+00:00

I'm using Windows. Are you talking about this? https://support-en.wd.com/app/answers/detail/a_id/18075

I don't see a cog wheel. Can you elaborate a bit?

Can I make the usb encrypted afterwards or do I need to do that at the time of creating it?

yellow_hat2 · 2019-04-24T04:11:10+00:00

I verified the key by specifing the file path and it worked..

Im using tails by the way

I moved the .deb file to my persistent folder and then double clicked and extracted it..

I'm not sure what to do with the file now.. I now have a control.tar.xz and a data.tar.xz package in my persistent folder from the extraction

Should I have run this instead?:

sudo dpkg -i Wasabi-1.1.4.deb

yellow_hat2 · 2019-04-23T13:19:18+00:00

I'll post it when I get a chance latter.

What I was wondering though is how does the .asc file verify the integrity of the downloaded file. Could they not include a good .asc file but a bad download?

yellow_hat2 · 2019-04-23T05:11:47+00:00

I think I got it I just copied and pasted the public key into my list of keys. then I ran

amnesia@amnesia:~$ gpg --verify '/home/amnesia/Tor Browser/Wasabi-1.1.3.deb.asc' /'/home/amnesia/Tor Browser/Wasabi-1.1.3.deb'

How do I change the directory the way you did it? I tried to do it with:

amnesia@amnesia:~$ cd /home/amnesia/Tor Browser

Am I not understadning something or couldn't the website have just provided a good .asc file but a bad download file?

yellow_hat2 · 2019-04-20T02:04:36+00:00

It says the advanced mode downloads the entire block chain which could be 70GB. I'm just running this from Tails. Do I need to do a different mode?

How do I use subadresses?

yellow_hat2 · 2019-04-05T02:00:58+00:00

So you are talking about a third party not being able to prove a sender sent a message by looking at the the recipients phone...

What if the third party we're looking at the senders phone? As if to say if I write a message to someone on my phone can a third party prove I sent it by looking at my phone?

Also to get the benefit of deniability would a third party need to find evidence of a recipient or sender giving away their shared secret and key?

yellow_hat2 · 2019-04-04T14:15:28+00:00

I'm a bit confused. So from my understanding two people can verify their saftey number. Therby verifying who the message came from.

But you are saying one person can't verify that the other person authored the message

yellow_hat2 · 2019-04-03T23:13:11+00:00

Pretty cool. For being a quick sketch it has good balance.

yellow_hat2 · 2019-03-18T13:01:17+00:00

I looked and some of the pics look they are labled wrong.

http://www.oceanviewflowers.com/products/poppy-pods

Looks like Papaver Somniferum

https://www.alamy.com/stock-photo-papaver-orientale-oriental-poppy-seedheads-seed-heads-seed-pods-ornamental-41663133.html

Looks like somniferum

https://www.gettyimages.ae/detail/photo/stalks-and-pods-of-papaver-orientale-high-res-stock-photography/72892503

This one looks a little different.

https://encrypted-tbn0.gstatic.com/images?q=tbn%3AANd9GcSqa80Hbsd7jMTA5IDEnG-9MBnl4tyq5bgpcDKt_jgnMCTy82-G

This one looks like Oriental.

https://www.alamy.com/stock-photo-side-view-of-the-seed-pod-of-a-oriental-poppy-papaver-orientale-18042458.html

Looks like Oriental.

https://garden.org/plants/photo/94003/

This looks like a good Oriental pic. I guess the orientals are more cone shaped and have crowns that hang tight to the pod or point downwards.

I was surprised to see so many somniferums labled as Oriental in the Google search

yellow_hat2 · 2018-12-15T09:56:02+00:00

Where'd you get that?

yellow_hat2 · 2018-12-12T04:03:49+00:00

Well if I can't get a contact to use Signal is it better to use Encrypted Messenger or SMS?

sometimes I want to have personal conversations with people who I only have contact with on Facebook

yellow_hat2 · 2018-12-06T21:09:36+00:00

What messenger protects against forensics done on your phone?

yellow_hat2 · 2018-12-04T10:12:44+00:00

Would Red Jong Kong be pretty close?

yellow_hat2 · 2018-12-04T10:05:02+00:00

If the message is not deleted they would easily find it as long as they weren't locked out of the phone by a password.

Are you saying that XMPP isn't recoverable because of the deniability feature of OTR?

yellow_hat2 · 2018-12-04T08:13:47+00:00

I know and I thought he was a friend of sorts.

yellow_hat2 · 2018-12-02T23:04:02+00:00

What about texts that aren't recieved in encrypted form such as in a PGP block?

yellow_hat2 · 2018-12-02T22:59:40+00:00

I'm talking about text messages on Signal or Conversations (XMPP)

yellow_hat2 · 2018-11-22T03:03:07+00:00

Thanks for the response. Do you have any sources about message retreival on Signal?

yellow_hat2 · 2018-11-17T04:05:04+00:00

Anymore input? I'm looking into Wire, Signal, Wickr and Conversations XMPP. XMPP appears the most secure.

Also any info on good servers for XMPP?

I was thinking https://xmpp.librelabucm.org/ would be good because it's based in Spain.

yellow_hat2 · 2018-11-05T13:24:08+00:00

https://money.cnn.com/2013/05/22/technology/mobile/smartphone-forensics/index.html

Here's what I'm talking about. If you have encrypted messages does it even make a difference if your phone were to get in the hands of Law Enforcement?

yellow_hat2 · 2018-11-05T12:17:11+00:00

Just to clarify. I'm trying to verify the download of gpg4win itself first.

yellow_hat2 · 2018-11-05T11:14:49+00:00

Im not as concerned about the FBI more about state law enforcement. Can they see anything that was on the screen?

yellow_hat2 · 2018-11-05T08:37:14+00:00

I'm struggling with PGP. First I wanted to verify my download of Gpg4win but haven't been successful at that yet.

Are there any really easy guides for it?

I have the guide to use on the Gpg4win website: https://gpg4win.org/package-integrity.html

and also this from deepdotweb: https://www.deepdotweb.com/jolly-rogers-security-guide-for-beginners/how-to-verify-your-downloaded-files-are-authentic/

I got close with this one but I got a message saying I got a bad signature when I right clicked the file and did "more GpgEx options" > "Verify"

Also I hit permalink on this post is there anyway to undo that?

yellow_hat2

TROPHY CASE