Xref: utzoo news.sysadmin:3101 comp.mail.uucp:4789 Path: utzoo!attcan!uunet!tut.cis.ohio-state.edu!snorkelwacker!mit-eddie!uw-beaver!sumax!halcyon!ralphs From: ralphs@halcyon.wa.com (Ralph Sims) Newsgroups: news.sysadmin,comp.mail.uucp Subject: Re: Passing proprietary messages through competitors or other sites Message-ID: Date: 22 Jul 90 14:09:26 GMT References: <118@rwing.UUCP> Organization: The 23:00 News Lines: 28 nanook@rwing.UUCP (Robert Dinse) writes: > In article <11613@hoptoad.uucp>, gnu@hoptoad.uucp (John Gilmore) writes: >> System administrators should strongly remind their users that info sent >> via ordinary Usenet or Internet mail is NOT private. It can be disclosed > The way I've handled this is to agree verbally on a password then crypt > the message before sending it. Crypted data seems to make it through uucp ok > and I've not seen too many systems that lack crypt. I'm sure it's not 100% > secure, but it at least makes it difficult for ordinary users who weren't > previously employeed by the NSA to look at it. ARC has a 'garble' feature that allows compressing a file and then allowing a password to be assigned to that file for un-arc'ing. This file can then be uu{xx}encoded and imported to a message. This may work for a large variety of systems, but I would imagine ARC hasn't been ported to _every_ platform. Also, I think some countries prohibit the transportation of encrypted data within their jurisdiction. I guess this may need to be addressed if one uses a path that uses a re-router in these areas. But if crypt could be distributed with Unix in these countries... (or is it?). -- Of all the things I've lost, I miss my mind the most...