Jump to content

I'm looking for group about using cryptography and VPN


You are about to reply to a thread that has been inactive for 3532 days.

Please take a moment to consider if this thread is worth bumping.

Recommended Posts

I started this thread in technology forum not in people, because this topic is technical specific for numbers of this forum.

I'm from Russia, My country isn't democratic, it's a police state with police control,  and I want to protect my privacy life and business from third people. So I want to use free OS - Linux Fedora security spin and find the US cryptogpaphy which can use in the Internet, and don't forbidden export limmitation for it.  I mean close cryptography adding to open industrial standard - AES

Link to comment
Share on other sites

I'm looking for people in SL who are interested in discussion about it in SL chat and also I'm interested in using VPN and cryptographic service for our new group in SL too, if other people will be interested in it.

Link to comment
Share on other sites

I can't see it being a very long chat:

 

User 1: "hey connected to a VPN before logging in SL!"

User 2: "ok"

 

That's all there is to discuss. A VPN is common networking, it just had nothing to do with SL as such which is why you might as well just Google for a discussion board.

 

Sometimes I connect via a VPN, nobody here knows when or why, there's nothing to discuss. really :)

Link to comment
Share on other sites

yeah, but it's only first part of my interests, the second part is cryptographic our chat  - making our security group in SL. I'd like our IM will be protect cryptography. For instance entrance in chat using https - 443 port instead 80; or 8080

Link to comment
Share on other sites

If you want to connect via vpn then your chat will be encrypted between your pc and the vpn termination. Thereafter it will be clear. SL does not offer encryption of chat in the standard viewer and with the 3rd party shared experience rules, is unlikely to feature in any approved TPVs

 

If you want encrypted end to end chat, SL is NOT for you.

Link to comment
Share on other sites

Ok, I see, but I don't understand about the  ban from LL  - I just interested in people with mutual interests, and learning technology. I'm interested in making own server for own group and have gateway to SL. But I think I found decision, I can make new group with my interests and then I may offer the numbers of this group to have secure chat not in SL, but on an another resource because our mutual interests relating with protect of our privacy and we will want to discuss it in secure manner and use GPL software for it.

Link to comment
Share on other sites


Rstan wrote:

Ok, I see, but I don't understand about the  ban from LL  - I just interested in people with mutual interests, and learning technology.

I don't feel there's any issue from LL's end, I don't recall anything in the ToS or CS that says that you cannot use encrypted communications within SL.

I still suggest that there's a tiny tiny interest group in SL, there are so many internet discussion boards, chat places that are all about this subject, why come to a platform where you have to discuss in clear text about encryption?  Go ahead make the group, it's your choice afterall.

Link to comment
Share on other sites

yes, but using SL is the first step to hide and protect the privacy. The next will be find the cryptographic chat in the netgame etc with members with mutual interests.

many internet discussion boards - they are seen everyone, but I want to use VPN and hide about everyone my interest to this topic.

That's why SL maybe very good area for it just as net rolegame but with special group in it with protected chat in it

What a pity, I can't make so here. Well, I understand this point. Anyone who knows about my interests may write me in SL then.

Link to comment
Share on other sites


Sassy Romano wrote:


Rstan wrote:

Ok, I see, but I don't understand about the  ban from LL  - I just interested in people with mutual interests, and learning technology.

I don't feel there's any issue from LL's end, I don't recall anything in the ToS or CS that says that you cannot use encrypted communications within SL.

I still suggest that there's a tiny tiny interest group in SL, there are so many internet discussion boards, chat places that are all about this subject, why come to a platform where you have to discuss in clear text about encryption?  Go ahead make the group, it's your choice afterall.

I can't remember now if Phoenix had it but it's predesor had what was called "OTR" (Off The Record) feature which was encrypted chat. 

I don't know why it didn't make it into Firestorm or if there was ever a statement from them why not.

Link to comment
Share on other sites


Perrie Juran wrote:


Sassy Romano wrote:


Rstan wrote:

Ok, I see, but I don't understand about the  ban from LL  - I just interested in people with mutual interests, and learning technology.

I don't feel there's any issue from LL's end, I don't recall anything in the ToS or CS that says that you cannot use encrypted communications within SL.

I still suggest that there's a tiny tiny interest group in SL, there are so many internet discussion boards, chat places that are all about this subject, why come to a platform where you have to discuss in clear text about encryption?  Go ahead make the group, it's your choice afterall.

I can't remember now if Phoenix had it but it's predesor had what was called "OTR" (Off The Record) feature which was encrypted chat. 

I don't know why it didn't make it into Firestorm or if there was ever a statement from them why not.

Yes it was Phoenix and I have a feeling it was something to do with the shared user experience but I could be wrong. 

Link to comment
Share on other sites


Sassy Romano wrote:



Who do you think you're anonymous from?  Do you really believe you're still anonymous when using a VPN?

This theme, I'm going to discuss in close group between professionals in this area, many aspects there are in this item starting from using cryptography, methods, protocols, software etc. At first I'm going to use only open software (Linux)

For these questions I want to make close group among IT specialists from this area.

Link to comment
Share on other sites

  • 2 weeks later...

best bet is to run an outside source as with anything as I pointed out would not be legal, because of certain restrictions by law enforcment and other goverment agency's.   iwthin SL nothing is private.  best to setup an encrypted irc server someplace, behind a vpn and password the server.  all I can really think of if you need that true of privacy.  

 

in this day and age though, nothing is honestly going to be private. 

Link to comment
Share on other sites


Drew Bhalti wrote:

since LL is a us based company they have to keep 2 weeks worht of chat logs for law enforcement, these have to be plain text and can not be encrypted.

Can you cite the legistlation that states that please.  While they may have to keep logs, such as an ISP might (even though the UK government just rode roughshod over the EU court ruling which said that they didn't and decided in one day what they agreed couldn't be decided in 3 months...) there's no requirement that I know of that they need to be kept in plain text.  That's just tough.

NSA and GCHQ can use whatever exploits they have and influence in weakening algorithms in the first place if they want to decrypt and read enciphered comms.

Link to comment
Share on other sites


Sassy Romano wrote:


Drew Bhalti wrote:

since LL is a us based company they have to keep 2 weeks worht of chat logs for law enforcement, these have to be plain text and can not be encrypted.

Can you cite the legistlation that states that please.  While they may have to keep logs, such as an ISP might (even though the UK government just rode roughshod over the EU court ruling which said that they didn't and decided in one day what they agreed couldn't be decided in 3 months...) there's no requirement that I know of that they need to be kept in plain text.  That's just tough.

NSA and GCHQ can use whatever exploits they have and influence in weakening algorithms in the first place if they want to decrypt and read enciphered comms.

There is no requirement in the U.S. that the content be saved.

But Law enforcement certainly is pushing for it.  LINK

This is a very interesting chart obtained through a FOI request detailing what information the top five Cellular companies retain.  LINK

But do be aware, while no company as a general rule will release any information without being served a warrant and no law enforcement agency will request information without a warrant lest they risk having the information thrown out in Court, LL can and will report to Law enforcement in the case that they believe a crime has been committed. Link of Example.

Link to comment
Share on other sites

That's what I would have expected Perrie.

The UK introduced the Regulatory of Investigatory Powers Act (RIPA) of which one part made it an offence to fail to surrender encryption keys.  They also added that failure to surrender keys even if the accused claimed not to know them would be considered an offence equal in stature to failing to surrender.

There was a suggestion that people should send the Home Secretary of the time (Jack Straw) a bunch of encrypted emails, the content of a suitably sensitive nature (without keys of course) and then inform the police that the Home Secretary was in possession of such information.  He would of course, be committing an offence of his own making by failing to surrender the keys of which he had no possession or knowledge.

However, key handling is a completely different subject than archival and retention of data and as such there's no requirement that I know of that it has to be transmitted clear text. 

That alone, cannot be true since that would break SSL for just about every internet bank transaction in the first place just for starters.

Link to comment
Share on other sites

Right now here Law Enforcement has to get a Court to order you to reveal the key(s). 

People refuse based on our 5th Amendment right against self incrimination.

But it has been a hodge podge of rulings.  Law Enforcement still needs to show reasonable cause.

Failing to turn it over after a Court order could result in being held in contempt of Court or possibly an obstruction of justice charge.  But there is no specific law here that I am aware of that compels anyone to reveal their keys.

http://blogs.wsj.com/law/2012/02/23/court-fifth-amendment-protects-suspects-from-decrypting-computers/

http://www.outsidethebeltway.com/federal-judge-orders-defendant-to-reveal-pgp-password-to-law-enforcement/

http://en.wikipedia.org/wiki/Key_disclosure_law#United_States

Regardless, I am not aware of any law that compels a Service Provider to "save" text messages, emails, etc, etc.

Link to comment
Share on other sites

You are about to reply to a thread that has been inactive for 3532 days.

Please take a moment to consider if this thread is worth bumping.

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share

×
×
  • Create New...