Silk Road forums
Discussion => Security => Topic started by: brutusk on March 31, 2012, 07:01 am
-
Avast has an awesome Android app I have been playing with. Among other things, it is loaded with James Bond-type stuff that allows you to control your phone remotely through sms messaging.
It allows you to lock the screen, lock the sim card, restore to factory settings, turn on gps tracking, etc.
I have been a bit concerned about my phone because I use Orbot and Orweb to check my SR messages when I can't get on the internet. I always make sure the data has been cleared, but I am sure if LE saw that they would have a field day. I wrote instructions down for my sister so she could send the lock and wipe commands for me if I should ever need it. I would just love to see the look on the LEO's face when my phone suddenly reboots and wipes itself while they are trying to figure out the access code hehe
-
Neat, but I wouldn't bother with browsing SR on my phone. Now if someone stole my phone that would be quite handy.
-
I tried out Orbot but found it to be an even bigger, slower, pain in the ass than tor on a pc. It was neat though and handy in tight spots where I was busy or on here a shitload but I removed it for safety. If something ever DID go down (knock on wood) and you had to get all your shit cleared, I'd want as few steps as possible involving as few people as possible. Because when you're getting busted, time goes about 300x faster and you want as few things to worry about as possible.
I use a desktop streaming app to browse from my phone. Plus then I can wipe the whole disk from my phone or any other phone running android or iOS.
-
Interesting concept, I am going to do some research. Anyone know anything about Sat phones with kill switches?
-
I tried out Orbot but found it to be an even bigger, slower, pain in the ass than tor on a pc.
I found it pretty buggy at first, too, with little support in the forums, but I just kept tinkering with it until I worked out all the bugs. Works great for me now. I live in an area with no internet, I have to drive a few miles to get online, so being able to get on SR from my phone is pretty handy. I can set my phone up as a hotspot, but I get throttled after 10 gb. Oh I miss the days when I had internet like regular people do!
-
I'm going to make rasberry-pi phone when they're available. Safest option imo.
-
Can't really trust any Android OS because google has infected it with aids so everything you do is then synchd to the google cloud for easy forensic recovery. Even if you disable all gmail addresses and reset to factory it still leaks data. Don't forget Carrier IQ hasn't disappeared yet, most US sold phone's still have it spying away.
This would only work if you installed a custom rom like Whispercore guaranteed to prevent data leakage and encrypt the entire device but sadly it's not available anymore, and only worked for one nokia handset anyways. Word is Charlie Miller and the other guy are going to develop it into a full security suite for free
I wouldn't trust any SAT phones, seems they have no problem locking onto signals and spying on them just ask the Syrian resistance
-
Can't really trust any Android OS because google has infected it with aids so everything you do is then synchd to the google cloud for easy forensic recovery. Even if you disable all gmail addresses and reset to factory it still leaks data. Don't forget Carrier IQ hasn't disappeared yet, most US sold phone's still have it spying away.
This would only work if you installed a custom rom like Whispercore guaranteed to prevent data leakage and encrypt the entire device but sadly it's not available anymore, and only worked for one nokia handset anyways. Word is Charlie Miller and the other guy are going to develop it into a full security suite for free
I wouldn't trust any SAT phones, seems they have no problem locking onto signals and spying on them just ask the Syrian resistance
I haven't seen any actual evidence that Google is taking any more of my information than I've signed away. And I'm already running a custom ICS rom with disk encryption built in on which usb mounting is disabled (or rather, not yet supported/fixed by the developer of the rom). And for the record, Carrier IQ wasn't on my handset when it came out of the box.
-
Can't really trust any Android OS because google has infected it with aids so everything you do is then synchd to the google cloud for easy forensic recovery. Even if you disable all gmail addresses and reset to factory it still leaks data. Don't forget Carrier IQ hasn't disappeared yet, most US sold phone's still have it spying away.
This would only work if you installed a custom rom like Whispercore guaranteed to prevent data leakage and encrypt the entire device but sadly it's not available anymore, and only worked for one nokia handset anyways. Word is Charlie Miller and the other guy are going to develop it into a full security suite for free
I wouldn't trust any SAT phones, seems they have no problem locking onto signals and spying on them just ask the Syrian resistance
haha
good post dude,
thanks
-
So android finally caught up to apples 'find my iphone' app via icloud by the sound of things. ;)
-
If you use Tasker you have been able to remotely control your Android phone for ages. I have mine set up so that if it receives a specific text message it replies with a link to a google map of it's location, another message locks it, another sounds a loud siren and another remotely wipes the SD card. You can even set it to overclock the phone to the point that the MoBo overheats and the phone dies, but I thought that was overkill.
-
Can't really trust any Android OS because google has infected it with aids so everything you do is then synchd to the google cloud for easy forensic recovery. Even if you disable all gmail addresses and reset to factory it still leaks data. Don't forget Carrier IQ hasn't disappeared yet, most US sold phone's still have it spying away.
This would only work if you installed a custom rom like Whispercore guaranteed to prevent data leakage and encrypt the entire device but sadly it's not available anymore, and only worked for one nokia handset anyways. Word is Charlie Miller and the other guy are going to develop it into a full security suite for free
I wouldn't trust any SAT phones, seems they have no problem locking onto signals and spying on them just ask the Syrian resistance
haha
good post dude,
thanks
google been a spy baby from its inception and will remains as such, here is some recent info.
http://cryptome.org/isp-spy/google-spy3.pdf
-
Can't really trust any Android OS because google has infected it with aids so everything you do is then synchd to the google cloud for easy forensic recovery. Even if you disable all gmail addresses and reset to factory it still leaks data. Don't forget Carrier IQ hasn't disappeared yet, most US sold phone's still have it spying away.
This would only work if you installed a custom rom like Whispercore guaranteed to prevent data leakage and encrypt the entire device but sadly it's not available anymore, and only worked for one nokia handset anyways. Word is Charlie Miller and the other guy are going to develop it into a full security suite for free
I wouldn't trust any SAT phones, seems they have no problem locking onto signals and spying on them just ask the Syrian resistance
haha
good post dude,
thanks
google been a spy baby from its inception and will remains as such, here is some recent info.
http://cryptome.org/isp-spy/google-spy3.pdf
yo charas (dont mean to disrupt the thread guys) but what strain are those seeds youre offering?:?
coming from the ACTUAL birthplace of marijuana.. im actually pretty excited about ordering some :)
let me know, and again
thanks for the info
(you can pm me the info about the seeds so we dont clutter up this thread)
-jtemp
-
Installing some sort of android firewall to monitor outgoing connections would stop Carrier IQ and leakage. Why risk it though, between Wikileaks sounding the alarm that every smart phone is multiple backdoored to new draconian spy laws in every country to capture traffic everywhere I wouldn't trust any phone. GPG email or chat w/OTR encryption is your only guaranteed privacy
-
here is some more info on google spying
http://cryptome.org/2012/04/google-spy-adsense.htm
add NVIDIA to the same group
http://cryptome.org/2012/03/Templar.zip
-
I haven't really researched Android, though I have one. Best advice is to use Chrome because it comes with a sandbox to prevent arbitrary root execution.. however that doesn't seem to matter because everyday we hear about new government laws being passed forcing carriers to insert spyware and backdoors into their phones.
In every single trial I've ever read about regarding smuggling operations or gangsters dealing drugs or terrorists using encryption it was bypassed and actively spied on by multiple agencies and used as smoking gun evidence to their guilt. Don't use them for business. If anything carry a laptop and jump on jabber+otr to talk to your suppliers or something. Use your phone to order pizza and talk to your girlfriend
TextSecure is a great end to end encrypted app but I would still use codewords and other misdirection, no blatant "Hey drugs are on the way!"
-
TextSecure is a great end to end encrypted app but I would still use codewords and other misdirection, no blatant "Hey drugs are on the way!"
Good lord, I HOPE people are using code words when they talk to their suppliers! I learned that in like, I don't know, 7th grade...not bashing on your post, just pointing out the obvious hehe
-
You'd be surprised some of the trial evidence and court docs I read they present like Class 3 smugglers doing millions a year talking about coke and shipping guns to each other in the clear because they believe they're on an encrypted voIP line using Android/iOS, or blackberry so-called encryption which is now fully backdoored
-
wow that's just scary
-
A very interesting thread, many thanks for sharing your thoughts all.
I am currently conducting business on SR from a Tor web bundle installed in an encrypted home directory and am toying with the idea of buying an Android Tablet specifically for SR - I don't need to tell all of you the benefits of having a separate, secure device for all your needs.
As far as I can tell the new OS 4.0 does allow for full device encryption, perhaps one of you can confirm?
Tor browsing is available through Orbot as we've already said and you can even generate and use PGP keps through the program APG as memory serves?
The one thing which puts me off is that one of my colleagues and I often need to chat in real time about business matters. We use Psi, an XMPP client which can be run through Tor and also supports encrypted conversations through OpenPGP keys.
It would seem however Android doesn't have this feature? If it did, I'd switch over in a heartbeat - would this be something that would interest any of you? I'm toying with the idea of paying a developer to create an app which does this if so?
V.