Marcus -
I understand that I can check the handshakes, transmissions, etc by hand
(telnet or a simple program I write myself)... what I'm offering is that
I don't know how to tell that checktls.com isn't a honeypot, looking for
people who "act guilty" by trying to secure their communications.
Sure it can actually do the tests it claims it is doing, and maybe even
be accurate in all cases except maybe one where the nefarious shadowy
guys in the background already "have your number" and the shadowy
characters instruct the system to report tighter security than exists,
causing the suspect to leave themselves more vulnerable than they
thought, etc... yes, these are the fruits of a paranoid mind, but just
because you are paranoid, *doesn't* mean they aren't out to get you.
MY ISP DOES! and it's regional and I like them (over 15 years now) and
I trust them (right up to the point when they get a National Security
Letter instructing them to quietly and without telling anyone including
their lawyer do exactly what they are told on pain of secret charges of
treason, etc.).
I also have no reason to believe that they keep my e-mail encrypted...
and from what I'm hearing from lavabit, if they did, THEY TOO would be
facing what lavabit is?
- Steve
On 8/17/13 2:32 PM, Steve Smith wrote:
HOw do we (even) know that checktls.com isn't some kind of honeypot,
trying to get us to signal our potential riskiness by using it to
test our e-mail service?
You can do it by hand, it's just a convenience. They pretty much show
you the (e.g. telnet) commands to use. I just mentioned that URL in
the hopes someone would say "Mine ISP does!" so that I could give them
my money instead.
Marcus
============================================================
FRIAM Applied Complexity Group listserv
Meets Fridays 9a-11:30 at cafe at St. John's College
to unsubscribe http://redfish.com/mailman/listinfo/friam_redfish.com
============================================================
FRIAM Applied Complexity Group listserv
Meets Fridays 9a-11:30 at cafe at St. John's College
to unsubscribe http://redfish.com/mailman/listinfo/friam_redfish.com
