Quote from: comsec on September 11, 2013, 11:55 pmBitmessage has already been proven to have fatal flaws in it. Unfortunately the guy who maintains it was completely weasely in his replies and sort of responded like a msg forum lawyer, unable to concede any points and just continually defended the pile of shit he created. It would help if he would submit a true white paper, one with clear technical specifications instead of vagueness. I would trust Bitmessage in about 2-3 years after everybody has had a chance to break it, and only if there's a real whitepaper released. This was before everybody found out the NSA can pwn elliptic curve cryptography too. So it's double fucked. If you use it only use it over Tor and assume everything is compromised, so paste in your 4096 PGP msgs don't rely on their crypto engineering.Make sure your PGP password is truly random, I would collect directly from /dev/random and generate a gigantic password, keep that in a password safe (Schneier's password safe or Keepass). Don't use 1Password or Lastpass, they've been broken too. Read Hashcat forums where they whittled down the entropy to hardly anything. Lastpass even refused to fix a bug, so consider it dangerous: www.tobtu.com/lastpass.phpUse Diceware to generate a passphrase. Because the words from the Diceware list are chosen by a random physical process (dice throws) there is no way that the order of words in the list can be determined. Even if an adversary knows that you used a 10-word Diceware passphrase, they only method they can use to attempt to break it is using brute-force. A 10-word Diceware passphrase has 129-bits of entropy. Given the fact that, a a general rule, passphrases/keys are usually found after a search of one-half of the keyspace, this means that the authorities would have to search a 128-bit keyspace to determine your passphrase. See: http://www.diceware.com (clearnet)Nightcrawler4096R/BBF7433B 2012-09-22 Nightcrawler PGP Key: http://qtt2yl5jocgrk7nu.onion/pks/lookup?op=get&search=0xB8F1D88EBBF7433B (IndyMedia .onion keyserver)PGP Key: http://dkn255hz262ypmii.onion/index.php?topic=174.msg633090#msg633090 (Silk Road Forums PGP Key Link)PGP Key Fingerprint = 83F8 CAF8 7B73 C3C7 8D07 B66B AFC8 CE71 D9AF D2F0