From: Todd Davies dav...@stanford.edu
To: symsys-eve...@lists.stanford.edu at
https://mailman.stanford.edu/mailman/listinfo/symsys-events
*Symbolic Systems Forum http:///viewing/htmldocument/13675*presents
*Honors and M.S. Project Presentations*
by
Harry Simon (Senior Honors Student) and Chan,
Hi Libtech. Facebook added support to put a PGP public key to your
profile and optionally use it to encrypt email notifications that are
sent to you:
https://www.facebook.com/notes/protect-the-graph/securing-email-communications-from-facebook/1611941762379302
Special thanks to the beta testers
On 06/01/2015 01:46 PM, Steve Weis wrote:
Hi Libtech. Facebook added support to put a PGP public key to your
profile and optionally use it to encrypt email notifications that are
sent to you:
Facebook is sending the email, so, yes they know the content of the
messages they are sending. Without encryption, third-party email
providers will also see that content. If the mail providers don't
support STARTTLS, contents may also be exposed in transit and exposed
to more parties.
Encrypting
On 06/01/2015 12:35 PM, Thomas Delrue wrote:
On 06/01/2015 01:46 PM, Steve Weis wrote:
Hi Libtech. Facebook added support to put a PGP public key to your
profile and optionally use it to encrypt email notifications that are
sent to you:
Most of time hacking a facebook account starts by compromising the related
email address to reset the password later. The reset link will be sent
through email. If encrypted this email will be read only by the owner of the
private key in his end machine.
H.
--
Sent from my Android
Facebook is an identity provider.
GPG is a failed(so far?) system for confidentiality and massively
successful system for managing identity(Hello Debian!)
For their notification system, FB is leveraging GPG as an identity provider
to say only a person who has a certain private key should be able
On 06/01/2015 06:09 PM, Parker Higgins wrote:
On 06/01/2015 12:35 PM, Thomas Delrue wrote:
On 06/01/2015 01:46 PM, Steve Weis wrote:
Hi Libtech. Facebook added support to put a PGP public key to your
profile and optionally use it to encrypt email notifications that are
sent to you:
On Mon, 2015-06-01 at 18:26 -0400, Thomas Delrue wrote:
On 06/01/2015 06:19 PM, z...@manian.org wrote:
For their notification system, FB is leveraging GPG as an identity
provider to say only a person who has a certain private key
should be able to reset access credentials for this account.
Further, I'll note that you don't have to trust Facebook can't be
coerced for encrypted notifications to be useful. You just have to trust
that -your enemies- can't coerce them. For many of Facebook's 1.44
billion users, this is probably true.
+1
On Jun 1, 2015 3:48 PM, Matt Mackall
Hehehe, smoke mirrors! Come on people! All these Internet Services freebies
are all there to collect your private information! They can say whatever to
keep you comfortable, but that's it! They're still hunters gatherers! ;-)
On Jun 1, 2015, at 5:21 PM, Thomas Delrue tho...@epistulae.net
Thomas Delrue tho...@epistulae.net writes:
On 06/01/2015 06:19 PM, z...@manian.org wrote:
For their notification system, FB is leveraging GPG as an identity
provider to say only a person who has a certain private key
should be able to reset access credentials for this account.
I had not
On 06/01/2015 04:20 PM, John Sullivan wrote:
Thomas Delrue tho...@epistulae.net writes:
On 06/01/2015 06:19 PM, z...@manian.org wrote:
For their notification system, FB is leveraging GPG as an identity
provider to say only a person who has a certain private key
should be able to reset
13 matches
Mail list logo