begin quoting Andrew Lentvorski as of Tue, Apr 17, 2007 at 12:38:10PM -0700:
> Lan Barnes wrote:
>
> >I've often wondered if an email list could be set up that automatically
> >used GPG at both ends. The server could have its own public key, and could
> >then decrypt and reencrypt using the public key of every subscriber. Of
> >course, it would be easy for intelligence gatherers to penetrate by
> >signing up ("Yes, comrade, I too get off by exchanging secret salad
> >dressing recipes"). So the content wouldn't be secret for long, especially
> >if new members were being admitted.
>
> And then some idiot on the list would archive every single email
> message--in plaintext.
Yup.
> This problem is not new. The issue is that people stick their nose into
> other peoples' business and jump to presumption of guilt. This is why
> our system attempts to enshrine some level of privacy and presumption of
> innocence.
>
[snip]
>
> The solution is easy, if unpalatable. Email only gets accessed through
> a web interface, cannot be saved or printed, has non external pop or
> imap access, and is only held on the corporate server.
Which means we're now dealing with a Trusted Computing Base system and
OS, *not* under the control of the user, as that's really the only way
we can enforce the rule against saving or printing. Hello Palladium.
It all comes back to who is in control of the information. It's hard
enough keeping control of information on systems under you thumb, and
once it's out there in the world, it's *very* hard. And once you let
it reach someone's eyeballs, well, now you need trust controls.
> Of course, this is so annoying that everybody will start conducting
> business on their yahoo/hotmail/gmail accounts. And then you have the
> problem again.
Very much so.
> The problem is social: we need to quit assuming guilt. Good luck with that.
Heh.
--
Why don't we just ask people if they're innocent? If they say "yes", they are.
Stewart Stremler
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
