[liberationtech] Group needs a 'secure' and 'anonymous' means to communicate

Frank Corrigan email at franciscorrigan.com
Sat Jan 7 07:26:18 PST 2012 

Thanks Michael, another LibTech member suggested https://crypto.cat - I
can see value in setting up a Jabber service and would wonder if it can
be set up to run from a servers ram, though of course how other keeps
logs screen shots is always an issue. At this stage setting a unique of
ad hoc instance of Jabber is not practical though I sure will keep it in
mind and may experiment with such in the future.

Using the likes of crypto.cat over Tor should enable a better degree of
anonymity for users and Tor packages are reasonably easy to use for the
uninitiated and use of a TAILS LiveCd/USB can cover a number of other
local logging issues.

Frank


----- Original message -----
From: "Michael Rogers" <m-- at gmx.com>
To: "Frank Corrigan" <email at franciscorrigan.com>
Cc: "Steve Weis" <steveweis at gmail.com>,
liberationtech at lists.stanford.edu
Date: Sat, 07 Jan 2012 14:54:46 +0000
Subject: Re: [liberationtech] Group needs a 'secure' and 'anonymous'
means to communicate

Hi Frank,

You could do worse than to set up a private Jabber server with SSL
support. That way you can ensure the server isn't keeping logs. Only one
member of the group (the server operator) needs to be technically
experienced; the rest can use standard IM clients to connect to the
server, through Tor if they wish.

The server operator can't easily remain anonymous in such a setup, but
when participating in chats she can connect through Tor like anyone else
to prevent her chat nickname from being linked to her identity.

There's no way to ensure that participants in a chat don't keep logs.

I recently set up a Jabber server for some friends, so ping me if you'd
like to talk it through.

Cheers,
Michael

On 07/01/12 11:57, Frank Corrigan wrote:
> The threats are dynamic and involve known people and arbitrary
> participants. Seeking communication tools and techniques resistant to
> conservations being logged in way that cannot be recovered by an ISP,
> though as said Tor offers transport anonymity.
> 
> Thanks to all the other suggestions for piratepads, typewith.me, gobby
> and Telecomix pad 
> 
> Does anyone know of a decentralised IM service or one they would suggest
> is more privacy supporting, following on from:
> 
> New AOL IM considered harmful by privacy warriors
> https://www.eff.org/mention/new-aol-im-considered-harmful-privacy-warriors
> 
> Frank
> 
> 
> ----- Original message -----
> From: "Steve Weis" <steveweis at gmail.com>
> To: "Frank Corrigan" <email at franciscorrigan.com>
> Cc: liberationtech at lists.stanford.edu
> Date: Fri, 6 Jan 2012 09:21:42 -0800
> Subject: Re: [liberationtech] Group needs a 'secure' and 'anonymous'
> means to communicate
> 
> What is the threat model? Who is the adversary? Would you trust
> third-party
> service providers with the contents of the conversation or does
> communication need to be only visible to participants? If you think it's
> the latter, is the concern that a service provider could be compelled to
> reveal the conversation?
> 
> How do people join? Will they have a secure side-channel to communicate,
> say, a URL? Is there a pre-established set of participants or do you
> need
> to handle arbitrary participants joining in?
> 
> On Fri, Jan 6, 2012 at 5:14 AM, Frank Corrigan
> <email at franciscorrigan.com>wrote:
> 
>> I am working with a UK based group and they want to enable better remote
>> over the web participation in meetings for those who cannot attend in
>> person. One possible application identified is Pidgin with OTR (Secure
>> Instant Messaging), can anyone suggest any other ways to communicate
>> that offer similar 'secure' and 'anonymous' means to communicate, but
>> crucially easy to use for the not so tech minded?
>>
>> Does anyone know of any useful services/methods to set up
>> temporary/disposable 'secure' and 'anonymous' online chat rooms?
>>
>>
> 
> _______________________________________________
> liberationtech mailing list
> liberationtech at lists.stanford.edu
> 
> Should you need to change your subscription options, please go to:
> 
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
> 
> If you would like to receive a daily digest, click "yes" (once you click above) next to "would you like to receive list mail batched in a daily digest?"
> 
> You will need the user name and password you receive from the list moderator in monthly reminders.
> 
> Should you need immediate assistance, please contact the list moderator.
> 
> Please don't forget to follow us on http://twitter.com/#!/Liberationtech

More information about the liberationtech mailing list