Subj : Re: Decoding this... To : Vk3jed From : Bbsing.Bbs Date : Thu Aug 01 2019 09:34 pm -=> Vk3jed wrote to Bbsing.Bbs <=- -=> On 07-31-19 21:24, Bbsing.Bbs wrote to Vk3jed <=- -=> Vk3jed wrote to Bbsing.Bbs <=- Bb> Perfect! It worked. Bb> BBS systems can have secure message communication! :) Vk> I know it for one on one, but for group communications, what happens? As many public keys you have, .. maybe you scraped/captures them from bbses or other places, any public key contained in the encrypted message, will allow all those with matching private keys to view/decrypt the message. Say you have created a message addressed to 3 people. During the process of assigning who should received the message [recipients], .. and you can add lots of them. When you post the ascii armor message on the BBS or wherever they have to actually download the message to the location where the private key exists. This means offline mail reader or something like that. The problem with private keys is they can't get into the possession of anyone but the owner, otherwise there is no non-repudiation! That is really important, and it has been mentioned in another post at some point about Proton mail and .... I think it was keybase. The short is .. on a bbs, like old school types, I don't know how it would work for that. I think there are ways, like software to create an encrypted tunnel into a stateless container that is only active for the time when the user is decrypting and reading the message. Lets say you upload your private key in the tunnel, (which I do all the time .. ssh tunnels) import it to the keyring and have the message imported to the container, the user decrypts, reads, then exits, and the container vanishes. Same would work for composition, and the output is the message to the bbs. The big flaw is trust, .. and if you've used containers, or cloud based systems, you know the owners of those systems ultimately have control of them, but.. that doesn't mean you can't create an encrypted container somehow or within an encrypted file system that the user supplies the key for like an ssl key. --- MultiMail/Linux v0.49 * Origin: Electronic Warfare BBS | bbs.ewbbs.net | CBNET HQ (21:1/138) .