EvilZone
Hacking and Security => Hacking and Security => : rasenove December 26, 2012, 04:46:05 PM
-
Which is the most secure email provides? Gmail? yahoo ? hotmail ? If you ask me id say that their popularity is there greatest weakness. Why? Becaus these are the onse that black hats target most, so a large number of users fall in their traps. For example, mostly black hats make rats, back doors, and other MALECOUS programs based on windows and MAC os x becaus most users use windows and then most users (less then windows users) use os x. Just like that black hats will keep finding ways to hack popular email provider systems like gmail , yahoo etc . So no matter how secure these emaile provider systems become the black hats will always fined a way to hack it. There for these email systems are only secure for a short amount of time (from latest securety update till the black hats find a way to hack it)
So what do you guys use for emailing? Im using hushmail .(free account) which keeps the data encripted , and the decription key is my password. It also encripts the email when i send it to some one else. This time the debristion key is a questions answer that the recever must know to access the email.
So what do you guys think about email providers like gmail, yahoo, etc popular services and which is the most secure one to you.
-
Your view on this is wrong.
Gmail is secure as fuck even though it's VERY popular - the only viable weakness is your password strength.
I am using gmail for a very, very long time and will continue to use it (mostly because of the great service and being able to use the IMAP protocol with thunderbird) and it has a great spam protection.
Yahoo mail was great in it's time... many years ago. Now it's just crappy email system.
Hotmail?... pff yeah right.
This view (more popular -> more likely to get hacked) does not apply to gmail in terms of server compromisation. They can only get in if your password is very weak.
-
Your view on this is wrong.
Gmail is secure as fuck even though it's VERY popular - the only viable weakness is your password strength.
I am using gmail for a very, very long time and will continue to use it (mostly because of the great service and being able to use the IMAP protocol with thunderbird) and it has a great spam protection.
Yahoo mail was great in it's time... many years ago. Now it's just crappy email system.
Hotmail?... pff yeah right.
This view (more popular -> more likely to get hacked) does not apply to gmail in terms of server compromisation. They can only get in if your password is very weak.
Dont get me wrong, i never talked about gmail Is poor securety.I like gmail too, but its popularity makes me worryed. There are posts all over the web on how to hack gmail, books only based on how gmail works, how to take it apart, and how to use it for yourself, There are tools that script kiddeys can use to get gmail passwords. Thats why im saying gmail is secure for a short time. Becaus people are always trying to hack it.
NOW i would say gmail is secure only if
MY PASSWORD(Demo similler to my own) :
<T0h1e1:2H0u6n6t5r7:7H4u5n5t9$:6T5h4e4:6H5u7n7t7e4d>
IS STRONG ENOUGH TO PROTECT MY DATA FROM posted methods of hacking gmail/methods taught in books/gmail hacking tools.
Note ABOUT MY PASSWORD : FOR making a strong password i choose a long sentence then put special chaseaters like * insted of "o" , $ insted of "S", : or / betwen every words and then put numbers betwen every chaseaters. I use a phone number or sl number for making it easey to remember the password like shown above.
And the only thing that bugs me about using populer Services is that there are alot of people out there alwyes trying to hack the system.
MY POINT : More popularaty, more want of it to be hacked.
-
I use Gmail and lavabit.
And yes, popularity has nothing to do with security.
Facebook is popular yet pretty secure in relation to most websites. Same goes for gmail.
-
popularity != vunerable
If anything, since they are more popular, they would have better security. Why do you think no one defaces google and the like, but instead some small ass sites? It's harder.
gmail.
-
So do you guys agree that Gmail is the most secure email service provider ?
-
Gmail is defiantly secure no doubt about that. Just because something is popular doesn't mean it will be hacked. Also the most plausible hack for gmail is social engineering or you saving your password on your browser or using the same password for other sites.
Now for illicit activities stick with hushmail because Google cooperates with law enforcement and subpoenas.
-
I don't know if your strategy is to catch cyber-wrongdoers by saying to them to stick with HushMail or you lack some background in reading news about it. -Insert Fry meme here-
- http://www.wired.com/threatlevel/2007/11/encrypted-e-mai/
- http://www.techdirt.com/articles/20071108/093110.shtml
I think people deserves to know if they are being snooped on. Whether they do bad things or not, it's up to their conscience/karma.
-
I understand you being worried that the most popular services are the most likely to be attacked, and that is true. But the most popular services are also the services with the most money. An extremely rich company such as Google can definitely afford top notch security. As said before, Google never gets defaced, but less popular websites do. Google has the money to prevent such things from happening.
-
Which is the most secure email provides? Gmail? yahoo ? hotmail ? If you ask me id say that their popularity is there greatest weakness. Why? Becaus these are the onse that black hats target most, so a large number of users fall in their traps. For example, mostly black hats make rats, back doors, and other MALECOUS programs based on windows and MAC os x becaus most users use windows and then most users (less then windows users) use os x. Just like that black hats will keep finding ways to hack popular email provider systems like gmail , yahoo etc . So no matter how secure these emaile provider systems become the black hats will always fined a way to hack it. There for these email systems are only secure for a short amount of time (from latest securety update till the black hats find a way to hack it)
So what do you guys use for emailing? Im using hushmail .(free account) which keeps the data encripted , and the decription key is my password. It also encripts the email when i send it to some one else. This time the debristion key is a questions answer that the recever must know to access the email.
So what do you guys think about email providers like gmail, yahoo, etc popular services and which is the most secure one to you.
Did you consider the soil the servers are running on?
Secure would also mean that the party in question wouldnt just hand out data to any official that happend to grab a sandwich?
Some countries are obligated by law to cooperate whereas other have proper privacy protection.
-
You can also use 2 factor verification with Gmail if you're worried about someone getting into your account. Of course if you save your passkey for 30 days on your PC, it somewhat defeats its purpose.
http://support.google.com/accounts/bin/answer.py?hl=en&answer=180744 (http://support.google.com/accounts/bin/answer.py?hl=en&answer=180744)
-
Gmail with a > 64 alphanumeric characters, but make sure you encrypt everything you send with RSA and use a proxy/ TOR/ VPN, just in case Google decides to go snooping.
Ok, maybe I'm being a little paranoid with the password length and proxy thing but one can never be too careful.
-
Gmail with a > 64 alphanumeric characters, but make sure you encrypt everything you send with RSA and use a proxy/ TOR/ VPN, just in case Google decides to go snooping.
Ok, maybe I'm being a little paranoid with the password length and proxy thing but one can never be too careful.
paranoid has saved many a hacker, so proxy/vpn is a must, not sure abt Tor. Really long password but too careful with the dictionary words.(geolocation, ip problem solved) encrypt the email too which gmail supports and casual users won't understand a thing wen intercepted though not sure wen its intercepted by huge wallet companies. Then i think it won't matter the email client with all that sec.
-
I am using gmail for a very, very long time and will continue to use it (mostly because of the great service and being able to use the IMAP protocol with thunderbird) and it has a great spam protection.
@Kulverstukas: Doesn't using IMAP with Thunderbird send your IP and metadata information in the source email?
@Fur I use 100 chars for my password, lol.
-
@Fur I use 100 chars for my password, lol.
howley crap, seriously, how much time do you spend writing the password?
-
@rasenove,
I have it encrypted on a few external drives and whenever I need to sign in - I just decrypt it and sign in. I have all my accounts done like this - except throw away accounts.
-
@rasenove,
I have it encrypted on a few external drives and whenever I need to sign in - I just decrypt it and sign in. I have all my accounts done like this - except throw away accounts.
Did you keep an account to recover other account passwords? Becaus if you didnt and if you lose your external HDD , then your doomed.
-
Yes, I usually have two accounts - one for use and one for recovery. However, it doesn't really matter because if it is important I save it for offline use.
-
hey op I get what you are saying about the more popular a webmail provider is the more likely it is to be hacked but I offer you that mabye the reason that they are so popular,
is because they have gone for a long time without being hacked because they
have enough of the money to have a high grade system and software.
and yeah gmail FTW!!!
-
I've heard that Google scan all e-mails for keywords, if something interesting should pop up, they intervene.
I'm not much of a conspiracy guy, but this is quite interesting.
http://www.disclose.tv/action/viewvideo/64466/googles_dark_side___google_conspiracy/
This video can also be found on YouTube.
-
To be truly secure, you need to have the incoming/outgoing servers encrypted with SSL (gmail does this), PGP support for your actual messages sent (public/private keys) and all IP and metadata hidden from source of the emails. Thus far, I personally have not found a way to combine all three. Anyone here know how to?
-
To be truly secure, you need to have the incoming/outgoing servers encrypted with SSL (gmail does this), PGP support for your actual messages sent (public/private keys) and all IP and metadata hidden from source of the emails. Thus far, I personally have not found a way to combine all three. Anyone here know how to?
Gmail actually only encrypts between Gmail to Gmail or after you have already received the email
In the middle it is not encrypted
-
This might sound a bit off but it might be best not to use E-mail at all when you need strong protection.
For the largest % of communication strong protection isnt really required, who gives a damn when your going to have dinner with your grandma.
Thus > E-mail.
For stronger protection I suggest sending p2p with strong encryption.
If you want security you musnt rely on anyone's crap but your own, its that simple.
Its no different from puttting your letter in a mailbox.