Is Hushmail and EliteFitness.com Email Safe?

[jumpmaster82]

that puts me at ease.

 

[George Spellwin]

compelling Hush to release data under the cooperation agreement and forcing them to become an agent/narc are worlds apart. Not saying it cant or wont happen, but its unlikely. It would be good to see Hush's response on this.

This is a great point.

Just because it is conceivable that the Feds could get a US Subpoena, then go to Canada, and get a Canadian court order to access someone's email and then try and get the Canadian courts to compel Hush to try and trick its customer's by breaking its product to sniff out a password that the Feds could then use to decrypt email does not make it even remotely likely to happen.

I think it is a big mistake to say that because it may be technically possible to do this - therefore I'm just going to get an account at Yahoo is missing the point. You would have to be an incredibly high value suspect to warrant to effort and expense of attempting something like this that may not even work.

 

[perryscoon]

Okay so how would one know if they've been using the java applet on hushmail or not?

And, if it is discovered they one hasn't been using it, what should one do now?

 

[craw_dad]

With all due respect to the Mr Spellwin and all else have responded to this thread but all they need is the password to read your encrypted email. Most of these dealers are facing some serious charges and I'm sure would be more than willing to give up the password to their accounts for leniency. Perhaps that's why the Federal Govt only asked for access to 3 accounts, it may have been those 3 individuals that wouldn't co-operate with Federal Prosecutors.

I do agree that you would have to be a high value suspect for the Government to want to go to such measures. I doubt the Government is going to go after the occasional user.

 

[George Spellwin]

With all due respect to the Mr Spellwin and all else have responded to this thread but all they need is the password to read your encrypted email. Most of these dealers are facing some serious charges and I'm sure would be more than willing to give up the password to their accounts for leniency. Perhaps that's why the Federal Govt only asked for access to 3 accounts, it may have been those 3 individuals that wouldn't co-operate with Federal Prosecutors.

I do agree that you would have to be a high value suspect for the Government to want to go to such measures. I doubt the Government is going to go after the occasional user.

That's right, if a dealer gives up his password, then the email someone sent TO the dealer can be read. This person's other encrypted email cannot be read.

 

[SLAYER69!]

interesting post. good info

 

[justinjones1963]

The big issue I have is that they were keeping RECORDS of peoples IP's and E-mails. That is BS.

I know that Hushmail is going to see a huge drop in their paid services.

Elite Fitness should drop their services and stop supporting them. The fact they kept records of all of this shit should piss all of us off. REMEMBER THAT people.

 

[hyp1]

The big issue I have is that they were keeping RECORDS of peoples IP's and E-mails. That is BS.

I know that Hushmail is going to see a huge drop in their paid services.

Elite Fitness should drop their services and stop supporting them. The fact they kept records of all of this shit should piss all of us off. REMEMBER THAT people.

goddamn bro,if it's encrypted there's no danger.what about that did you not understand?I think you're being overly paranoid by demanding that ef drop their hushmail accounts.if it bothers you so fucking badly you can easily pay for another encrpyted email account elsewhere.

to me this thread answered a lot of questions,eased my mind and I'm happy as hell george posted it.

 

[Svengali]

goddamn bro,if it's encrypted there's no danger.what about that did you not understand?

Wow... This is almost worthy of a flame. Bro, read all of the reports and interviews with the CTO.

Your assumption here is dangerous and misguided.

 

[hyp1]

Wow... This is almost worthy of a flame. Bro, read all of the reports and interviews with the CTO.

Your assumption here is dangerous and misguided.

you obviously didn't read the whole thread have you?if it's so goddamned flame worthy as you fucking say have balls enough to do it

here's a recap of what george stated that you obviously overlooked.

Here's what the Feds can and cannot read:

All email that is not encrypted can be read. That would include email you sent to or got from a yahoo.com account or a hotmail account or any other regular email account.

If you selected the encryption option, and sent encrypted email to someone else using PGP, elitefitness.com email, hushmail, or cyber-rights, that mail could not be read unless it was decrypted first.

To decrypt that email, the Feds need the passphrase you used when you created the account.

Hushmail does not have that passphrase if you are using the Java applet version of their software. The EliteFitness.com email system here, ONLY uses the Java applet version, so neither hushmail (nor elite) has access to your passphrase.

If you are using a hushmail.com email address, there are two ways to get your email. The java applet way like we use here, or a more traditional method that does not require the applet.

The advantage of this second method, which is not available to EF members, is that it is faster to login and check your mail. The disadvange is that hush gains access to your passphrase in the process. Hush has always posted this distinction to their users. And EF does not make this second option available to you.

So, long post made short, you are much better off to use an elitefitness.com account and send email to others using PGP, hushmail, or cyber-rights than you are without it. If your email was sent or received using PGP encryption, then it cannot be read when it is turned over pursuant to a subpoena without your pass phrase.

take a breath and try to stop being so paranoid and feeding off of the hype that been perpetuated time and time again.george has no reason to bullshit anyone.