Opened 12 years ago

Closed 5 weeks ago

#502 closed enhancement (wontfix)

Encrypt identity keys

Reported by: tcr Owned by:
Priority: Low Milestone:
Component: Mixminion-Other Version: unspeficied
Severity: Normal Keywords:
Cc: tcr, nickm, computerguy12056 Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

At the moment, each node's "identity.key" is not protected at
all, so a server seizure might easily compromise it.
For my own node I've toyed around a bit with encrypting (gnupg)
the key, asking for the passphrase at startup and only decrypting
to a random-key-encrypted temporary storage (cryptfs). In this
setup the key would never be lying around unencrypted.

I suppose, the SURB keyring is already encrypted, so maybe some
kind of built-in identity key encryption might be feasible with
not too much additional effort.

[Automatically added by flyspray2trac: Operating System: All]

Child Tickets

Change History (4)

comment:1 Changed 11 years ago by computerguy12056

The KeePass, program is invalid due to a connection reset on my dial-up Internet!

comment:2 Changed 11 years ago by nickm

Hi, Rhett.

Solutions that only work on Windows aren't right for Mixminion.

Also, please don't upload other people's exes: if the solutions are free software, you can just post a link.
If they're not, I don't want to be involved in redistributing them.

(I deleted the Keepass exe because it was (as you say) invalid, and the Axcrypt exe because AxCrypt is
distributed under the GPL, and so I don't think I'm supposed to redistribute it without an offer to
redistribute source. If anybody wants to check them out, please visit:

)

comment:3 Changed 20 months ago by teor

Cc: tcr,nickm,computerguy12056tcr, nickm, computerguy12056
Severity: Normal

Set all open tickets without a severity to "Normal"

comment:4 Changed 5 weeks ago by nickm

Resolution: Nonewontfix
Status: newclosed

Mixminion development is not happening any more.

Note: See TracTickets for help on using tickets.