TuxJam Episode 24

In Tuxjam episode 24, Andrew returns to join Kevie in discussing security-related FOSS software, including Tor & Torchat, Enigmail and EncFS. Andrew talks about his new toy – the ZTE Open Firefox OS phone – and Kevie does a commendable job of avoiding the green-eyed monster since his Geeksphone will be further delayed. Thanks to @theru for alerting us to this mention of TuxJam on linuxlinks.com.

Creative commons tracks played in this episode:

Clarice by onsind
Airplane Mode by Josh Woodward
Birmingham Jail by Chatham County Line
Got My Modem Working by Fit and the Conniptions
I do not think so by Elin Pelin
Story 3 by Jay Kishor

Flattr this

2 thoughts on “TuxJam Episode 24

  1. I’m thinking you might have Torchat a lil wrong. The inability to find other users via a search is exactly what you want if you’re a dissident. The Police can’t search and spearfish users. Also the chats themselves are encrypted and pass through Tor, so even if someone does know both usernames, how easy is it for them to sniff every node on the Tor network to track the path of that conversation?

    Even if they do, the chat is encrypted. You don’t have to rely on the NSA only getting the metadata on the word of Google or Yahoo, because it’s the best they can get with Torchat. Of course, increasingly using stuff to stay private marks you out as suspicious in the eyes of some.

    On the subject of Enigmail, I use that in Thunderbird. When you receive an encrypted email, it stays encrypted until you click a button marked “decrypt mail”. Then you’ll be prompted for your private key passphrase. Only then will you see the decrypted message.

    Remember with PGP, you’re meant to encrypt it with the OTHER persons public key, meaning only THEY have the matching private key to decrypt it.

    Now I usually sign my emails, not encrypt them because many folks don’t know about PGP etc so they don’t have keys I can use when communicating with them.

    GMail make it very difficult to encrypt within the browser. If it’s encrypted they can’t scan and profile the contents. The solution? Use GMail through Thunderbird and encrypt with Enigmail / PGP. It does make it awkward to open anything encrypted within the web UI but hey.

    Cryptkeeper is a nice lil GTK system tray applet for working with ENCFS. I’ve had a policy of installing Linux as fully LVM encrypted for a while now. It does take many hours to zero the hard drive at install, and it needs a passphrase after Grub, but it’s useful if your PC is ever stolen, it can’t even be mounted in a live CD so you know your data is safe.

Leave a Reply

Your email address will not be published. Required fields are marked *