Bitcoin Forum

BitMessage is a decentralized, encrypted and peer-to-peer messenger. This program has seen a surge in popularity since the Snowden leaks.
TorChat is an easy-to-use anonymous messenger designed to fit nicely into the Tor environment. It has been widely used across the Dark Net spectrum since before Tor Mail’s fall.
PrivNote is a Clear Net messenger service that deletes notes once they’re read. Silk Road vendor RxKing prefers this service, but others refuse to use it, citing multiple security concerns.
SMS4TOR is a Tor-friendly version of PrivNote that has gained considerable traction thanks to its base a Tor hidden service.
I2P-Bote uses the I2P anonymizing software to provide a decentralized, encrypted, verified email service. The service is only in alpha and, due to its reliance on I2P, will probably not be widely adopted.
Privatdemail is an email service with a focus on privacy (as opposed to anonymity). Here’s a fun fact: You apparently can’t email Israel because the servers are located in an Arab country that forbids it. That policy will not inspire confidence, but even so, Privatdemail is already in use.
RiseUp is an email service built for “liberatory social change.” Users must apply and be approved for accounts, proving that they are activists fighting for positive change, which is whatever RiseUp’s founders deem it to be. In exchange, RiseUp keeps minimal logs, encrypts your data and defends your communications unlike many corporate email services.
Nym is a remailer that allows you to send encrypted emails without them being traced back to you, the sender.
Mixmail is a remailer similar to Nym but is much easier to use. It strips out identifying factors like an IP address, making a quick, anonymous email an easy proposition.
Jabber is a popular open-source, decentralized messaging system. It’s widely used by journalists already, particularly in the Middle East.
Tox.im is a currently-in-development tool that promises to allow encrypted and decentralized video and text chat reminiscent of Skype—only without Microsoft allowing the American government to listen in as they do.

Just use whatever email you like and encrypt your message. Encourage your recipients to do the same.

He could move to Russia and continue operation Lavabit from there IMHO! It would be nice slap in the NSA face ;D

Just use whatever email you like and encrypt your message. Encourage your recipients to do the same.

I think encryption of messages sounds great but not too many people know about it or how to use it and TBH I think encryption is a little difficult to understand. I mean, even Nimda was offering lessons on PGP/GPG encryption here on the Bitcoin forum where you would expect most members to be pretty tech savvy.

+1

I don't understand why would someone use tormail or any other "hidden" email service for that matter, if I was a fed looking for drug dealers that would be the first place I'd look, same thing with sensitive information..

Just use whatever email you like and encrypt your message. Encourage your recipients to do the same.

Yeah, because I'm sure that everyone I communicate with knows what encryption is, and how to send/receive encrypted e-mails.  

Aside from Bitmessage, anyone know of any other alternatives?

What is the opinion here about hushmail.com?

HushMail is not secure

https://en.wikipedia.org/wiki/Hushmail#Compromises_to_email_privacy

I assume someone has already mentioned bitmessage.org (even though it's not email) it could replace email someday as a secure alternative.

I am eagerly awaiting the release of StartMail, from the StartPage developers:

https://beta.startmail.com/

For email services, I think running your own mail server is a good idea.

The sad thing is that encryption is complicated enough that the average law-abiding citizen will not jump through the hoops required to get it up and running, but so cheap and easily accessible that any criminal or terrorist smart enough to pose a real threat can easily incorporate it.

It doesn't make sense that the government is spending so much money and effort collecting all of this private data just to catch the dumbest terrorists out there.

Unless it becomes possible to send and receive messages to non-bitmessage users I highly doubt it will gain much acceptance. There's too much network effect to overcome.

Can they be trusted with our data? Are they an American company? And are they as secure as Lavabit?

Looks like a great alternative that will definitely be needed for us ex-Lavabit users whom await good news about the service.

It is already possible to configure Thunderbird mail client to route mail through the bitmessage network ... it will become just another protocol layer option like POP, IMAP, SMTP, etc.

It sounds like it will be the best choice for private email available. I know StartPage is highly recommended for internet searches as it uses the google search engine but without all the tracking.

Not sure where they will be based out of - I highly doubt it will be the US as that would defeat the whole purpose.

I was a Lavabit user too - when I researched them and discovered they were American I didn't want to use them but there weren't any other good alternatives. I pray that StartMail is what we've all been waiting for.

It sounds like it will be the best choice for private email available. I know StartPage is highly recommended for internet searches as it uses the google search engine but without all the tracking.

Not sure where they will be based out of - I highly doubt it will be the US as that would defeat the whole purpose.

There's also I2P mail, which has a gateway out to the internet at large.

It is already possible to configure Thunderbird mail client to route mail through the bitmessage network ... it will become just another protocol layer option like POP, IMAP, SMTP, etc.

+1

I don't understand why would someone use tormail or any other "hidden" email service for that matter, if I was a fed looking for drug dealers that would be the first place I'd look, same thing with sensitive information..

I still prefer end-to-end encryption. There are some decent clients for GPG or PGP, we just need to get more people using them.

I still don't understand what's so hard about it

Have you ever watched a normal people use a computer? Have you ever tried to help someone who doesn't know anything about cryptography set up an email client to use PGP?

Ixquick is UK based ...

https://www.penango.com/ is an option to have end-to-end encryption with gmail webmail. Not FOSS.

We will disclose information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary to respond to claims and legal process, to protect the property and rights of Penango, to protect the safety of the public or any person, or to prevent or stop activity that we consider to be illegal or legally actionable.

Made in Switzerland: https://www.neomailbox.com/services/secure-email


    High strength SSL encryption
    IMAP, SMTP, POP3 and Webmail
    Multi-level spam and virus protection
    Unlimited disposable email addresses
    OpenPGP encryption, digital signatures
    IP hiding for enhanced privacy
    RSS feeds delivered via email
    Hosted in Switzerland


We have been increasingly concerned about the alarming erosion of online privacy rights in the USA over the past decade that we've offered Secure Email services hosted in the USA.

To offer our customers an alternative to hosting their email in the USA, in 2004 we began offering Offshore Secure Email service hosted in The Netherlands, and in 2010 we moved all Offshore Secure Email accounts to servers hosted in Switzerland, which affords some of the strongest legal privacy protections for customer email messages stored on our servers.

...and yet people still scramble for 'convenience' or whatever reason they want the next big thing.

GPG was released 14 years ago!

rightclick -> encrypt -> pick your recipient -> enter passphrase.
I still don't understand what's so hard about it - and you can use what ever network* you like.

It is already possible to configure Thunderbird mail client to route mail through the bitmessage network ... it will become just another protocol layer option like POP, IMAP, SMTP, etc.

Made in Switzerland: https://www.neomailbox.com/services/secure-email


    High strength SSL encryption
    IMAP, SMTP, POP3 and Webmail
    Multi-level spam and virus protection
    Unlimited disposable email addresses
    OpenPGP encryption, digital signatures
    IP hiding for enhanced privacy
    RSS feeds delivered via email
    Hosted in Switzerland


We have been increasingly concerned about the alarming erosion of online privacy rights in the USA over the past decade that we've offered Secure Email services hosted in the USA.

To offer our customers an alternative to hosting their email in the USA, in 2004 we began offering Offshore Secure Email service hosted in The Netherlands, and in 2010 we moved all Offshore Secure Email accounts to servers hosted in Switzerland, which affords some of the strongest legal privacy protections for customer email messages stored on our servers.

I wish we had something where the encryption of one messages didn't use the same keys as the encryption of the previous message. So if at some point in time, one of my PGP priv keys is obtained somehow, all my mail isn't then readable.

This is my biggest issue with PGP.

I'm watching bitmessage with interest, but no osx client yet ?

There not being support for OSX is a downer, but we can always install Windows on OSX just for Bitmessage

https://www.penango.com/ is an option to have end-to-end encryption with gmail webmail. Not FOSS.

Has anyone used 'safe-mail.net' ??

ByteMail is a decentralized, P2P, communication protocol for sending messages over a secure connection on the internet. ByteMail was created in order to provide people with a way to send messages without worrying about a third party intercepting and reading these messages. ByteMail ships with a webUI as well as a command-line UI.

If you are a developer and would like to contribute to the ByteMail project, check out the project on Github here: http://github.com/ByteMail

Correct me if I'm wrong but if you want to send an encrypted mail to person A, your have to use A's pubkey. How do you encrypt all your mail if not all of your correspondent have setup their pubkey/privkey  GPG system?

Firstly, the company that provides Internet services for hosting the Safe-mail.net system is Barak.net.il, based on our review of the domain registration for Safe-mail.net. Barak.net.il is one of three companies with a license from the Israeli government for providing similar Internet services, according to the English-language version of their web site, as we understand it. Perhaps it is merely a coincidence that Ehud Barak was once head of the Israeli Defense Forces intelligence branch.

Secondly, Safe-mail.net makes the usual disclosure that they may disclose your account activity, stored e-mails, and other information upon court order or law enforcement request. They make the unusual variation of this disclosure by stating that they may disclose these things whenever it is in their interest to do so. This vague contract clause should scare anyone who thinks about it even briefly. Given that Barak.net.il is licensed by the Israeli government, it would seem quite likely that the Israeli government could command that the data from all Safe-mail.net accounts be provided to the government.

Thirdly, we found no details about the encryption algorithms used to provide for security with Safe-mail.net. An investigation of Israeli law suggests that there is a mandate that encryption have back doors or key escrow for use by Israeli authorities.

Like Hushmail, safe-mail has a backdoor into their backend for LE. I know this for a fact, don't ask for sources ;)

Hushmail, a longtime provider of encrypted web-based email, markets itself by saying that "not even a Hushmail employee with access to our servers can read your encrypted e-mail, since each message is uniquely encoded before it leaves your computer."

But it turns out that statement seems not to apply to individuals targeted by government agencies that are able to convince a Canadian court to serve a court order on the company.

It would be like calling someone who doesn't have a telephone. The solution? Encourage or force them to get one, or buy one for them and show them how to set it up.

ByteMail


Official project home: bytemailproject.org (http://bytemailproject.org/doku.php)

And I'm sure that's too much of a hassle for everyone to do.

That's why a service like Lavabit was perfect to the core.

Here's a source, also note this was a Canadian court and five years ago;


http://www.wired.com/threatlevel/2007/11/encrypted-e-mai/

Hassle? I suppose, if you need to put down Netflix for what, an hour.....?


On my list of 'perfect', getting shut down by a federal agency is nowhere near the core.

They didn't get shut down by any federal agency. The owner chose to commit suicide (not literally of course) rather than to hand over private user data.
The fact that no one's data was compromised is a victory to all. Yeah they all suffered a loss but at least Lavabit kept it real to the end unlike other similar service providers
that make false promises.

This experience has taught me one very important lesson: without congressional action or a strong judicial precedent, I would _strongly_ recommend against anyone trusting their private data to a company with physical ties to the United States.

Sincerely,
Ladar Levison
Owner and Operator, Lavabit LLC

Levison stressed that he has complied with "upwards of two dozen court orders" for information in the past that were targeted at "specific users" and that "I never had a problem with that."

Isn't there something like OTR but for email?

With a diffie-heilman agreement specifically? Or are you talking about GPG/PGP?

I mean something where the two ends negotiate an encryption over unsecure lines in a secure manner; while providing the option to fall back to plain text if the other side refuses to go secure.

Yea for email GPG/PGP. For IM OTR, for VOIP ZRTP.

Given that you have to use someone's key to encrypt a message, it would be safe to assume they had software to generate and handle said key.

But how would you know if they have a key in the first place?

With GPG/PGP the email client has no clue whether the receiver has or hasn't means to read encrypted data until the user tells it...

Kim Dotcom of megaupload fame wants to get in on the act as well, starting an end-to-end encrypted email service:

http://yro.slashdot.org/story/13/08/11/1244209/after-lavabit-shut-down-dotcoms-mega-promises-secure-mail

Is there a tutorial? If so, I would love to do this.

This should be good ... he may come across sometimes like a big, funny guy (clownish) but you know what? ... He just goes ahead and does shit, he doesn't just talk about it.

You'd have to negotiate that beforehand.

Okay I see what you mean. Unfortunately building a system like you mentioned requires a 'failsafe' for decrypting the messege then sending plaintext if encrypted message can't be decrypted by the receiving party, an inherently insecure action.

OTR cannot do this either, so curious as to why you 'said similar to OTR for email' but then responded as you did?

Last i checked (not recently) OTR did indeed allow you the option of using plain-text if the other party didn't had OTR

Speaking of OTR...

http://bitcoinism.blogspot.com/2013/08/facebook-chats-can-be-private.html

What's the consensus on https://www.neomailbox.com ? It's expensive but is it good?

I think running your own mail server for emails is a good ;) ???

Interesting discussion. What's the consensus on https://www.neomailbox.com ? It's expensive but is it good?

Wait for the Kim Dotcom solution?  8)

that may be a temporary solution, but hosting your own server is more likely the long term solution.

additionally, there is bitmessage, a distributed email protocol, similar to bitcoin in some respects.

that may be a temporary solution, but hosting your own server is more likely the long term solution.

additionally, there is bitmessage, a distributed email protocol, similar to bitcoin in some respects.

But, would my ente123.com mailserver be accepted by other, regular mailservers? No blacklisting or the like? At least webservers who are open (send mails without registering) or sending spam will quickly be blacklisted.
So, I guess, it's as simple as installing a mailserver daemon, registering any domain and having a static IP (or dyn-dns)?

Delivery to the following recipient failed permanently:

     support@localbitcoins.com
     
Technical details of permanent failure:
Message rejected by Google Groups. Please visit http://mail.google.com/support/bin/answer.py?hl=en&answer=188131 to review our Bulk Email Senders Guidelines.

Why has Gmail blocked my messages?

Here at Gmail, we work very hard to fight spam [...]

i havent done much research into hosting my own server. i use a combination of gmail and bitmessage depending on who im talking to.

im really excited about MailPile though.

The project is run by 3 developers, 1 from google, 1 a member of the Icelandic Pirate Party, and 1 open source user interface developer.

Its still in the works, but should be useable in 6-12 months.

You can follow their progress and look up details here.

http://www.mailpile.is/

The fact that Mailpile consists of a google developer already makes me nervous to use Mailpile.  :-\

The fact that Bitcoin consists of a google developer already makes me nervous to use Bitcoin. :-\

One more thing: why isn't there (or is there that I don't know about?) a web-of-trust model system for SSL certificates? At this point, it seems like the only secure solution is self-signed certificates, and that is only "secure" if you know the person who runs the server.

At this point I would say anyone who wants web-based secure email had better be running their own web and mail servers. Or else they are more trusting than I am that every Certificate Authority in the world isn't CCing everyone's private webserver keys (which the CA's generate) to every three-letter-agency on Earth.

I agree the CA system is flawed and proven to be broken/compromised in some important cases.

Namecoin TLS is now at functional state and the concept has been proven. Now it needs some more work (and devs) to bring it to a level where widespread usage is simple.

http://dot-bit.org/forum/viewtopic.php?f=2&t=552

The fact that Bitcoin consists of a google developer already makes me nervous to use Bitcoin. :-\

you've got to be kidding. If any changes are made the community disapproves of we won't update our clients, simple as that. Mike Hearn is a legend mate don't be a dick.

... he's not a legend ... bitcoin is the trust no-one currency, you'd do well to remember that.

Here i am speaking to the hard work mike has put in making bitcoinj possible. You'd do well to remember that.

Thanks .. maybe I will. Deifying devs and calling people dicks is probably not going to make me listen to you much though ... I wonder how he missed that random number generator Android bug for soooo long? Maybe concentrating on the law enforcement possibilities for bitcoinJ was occupying too much of his dev mind share?

Self-hosting your own mail server is a short term solution for long term problem. e-mail must be retired because of usability and security problems. Just like BBS or Gopher is no longer used by mainstream.

Self-hosting your own mail server is a short term solution for long term problem. e-mail must be retired because of usability and security problems. Just like BBS or Gopher is no longer used by mainstream.

i havent done much research into hosting my own server. i use a combination of gmail and bitmessage depending on who im talking to.

im really excited about MailPile though.

The project is run by 3 developers, 1 from google, 1 a member of the Icelandic Pirate Party, and 1 open source user interface developer.

Its still in the works, but should be useable in 6-12 months.

You can follow their progress and look up details here.

http://www.mailpile.is/

Yea there is no doubt he is a doer more than a talker, but don't walk into his playpen willy nilly. If you are looking for secure encrypted mail storage the only person you can trust is yourself. Using open source software or at least auditable services is key.

I'm interested to know what you suggest to replace SMTP. I have little doubt that whatever comes next will still end up being called email.

what about bitmessage?

I'm interested to know what you suggest to replace SMTP. I have little doubt that whatever comes next will still end up being called email.

What is this ?
The Bitcoin price seems to be 800 $ there.

Countermail looks good. . . and they accept Bitcoin. . . any opinions as to whether they are secure?

CounterMail is a secure and easy to use online

it requires no specialized computer skills or knowledge

Bitmessage has several potential security issues including a broken proof of work function and potential private key leaks.

 Full details:
 http://secupost.net/*RefNumber/bitmessage-security

Mr "Robert White" was behind the "attack" (message from secupost.net and Bitmessage):
-- -- --
This message is also available at http://secupost.net

Alright, the messages sent out a few days ago are starting to expire now. It's time for everyone to learn what the purpose of secupost.net is.

As many of you guessed, this is indeed a Bitmessage address to IP address mapper. Yes, the only thing that webserver would send was a 500 message.

It did alright too, gathering nearly 500 bitmessage users information after sending 15000 messages. Double what I expected.

I've included both a log of each address detected and the first thing to hit it including IP, reverse DNS and useragent as well as raw logs for every valid request. If you need to confirm this signature so you can verify messages from me when bitmessage is down, please see the bitmessage general chan for a copy from my bitmessage address.

So, future lessons:
- - - Yes, all bitmessage addresses are public and can be read from your messages.dat file using a small script.
- - - Don't click links. Even if it looks like a security-related site and uses some technical terms. I am not a nice person, I will publish any information I can gather about you and I don't care if you get lit on fire by terrorists because of it.
- - - Bitmessage does _not_ scale. It took me around 3.5 hours to send ~15k messages but it took the bitmessage network over 18 hours to fully propogate them.

Some of you were smart enough to use tor or VPN providers, but many of these are direct home or server IPs. The information below is more than enough for any government to come after you or any script kiddie to DDoS you. Be more careful next time.

Some of you tried to use scripts to claim addresses which weren't yours and skew the data, of course, you didn't even change your user-agent.

Even without accouting for that your attacks were ineffective because the IDs were generated in a non-linear fashion using a cropped HMAC-SHA256. To find your id:

def gen_mac(addr):
mac = hmac.new("fuck you", addr, hashlib.sha256).digest()
return unpack('>I', mac[0:4])[0]

This simple deterministic method means that you would have had to try... (2^32/15000)/2 = 143165 times on average just to get a single collision. Thanks for playing, but no luck this time.

This service has been operated completely anonymously thanks to Tor and Bitcoin. I hope you enjoy the result.

Robert White (BM-2D8yr4fzoMzwndqPwLMVyzUcdfK9LWZXjY)

ByteMail seems interesting but the fact that the project seems to be at its infancy is a bit of let down.
It will definitely discourage many potential users from adopting it.

Looks like we're all screwed. At least until The Pirate Bay releases Hemlis.  ;)

https://heml.is/

Soon™
For anyone curious and lazy to google.

Thats for sure a strange mix, encrypted end to end communication and posting your personal infos on facebook and twitter.

Your server only?

Yes! The way to make the system secure is that we can control the infrastructure. Distributing to other servers makes it impossible to give any guarantees about the security. We’ll have audits from trusted third parties on our platforms regularily, in cooperation with our community.

Thats for sure a strange mix, encrypted end to end communication and posting your personal infos on facebook and twitter.

I'm in the process of setting up my own email server.  End-to-end encryption, including the server data itself.
I'm the only one who has to trust it since I'm the only one using it.  Come at me, bro.

I think setting up your own email solution is probably the least secure option. It's very difficult to properly setup a secure email solution with proper encryption and anti-logging.

Installing Ubuntu and some mail server ontop of it doesn't provide any more security than using PGP with gmail. Also, unless your a unix expert, securing your own unix system can prove to be difficult, especially if you are ever targetted (and your mail server would stick out like a sore thumb in the headers of any email you send).

With gmail, we pretty much have to assume that everything ever said in an email on gmail is duplicated in close to real-time on the NSA's servers.

Looks like we're all screwed. At least until The Pirate Bay releases Hemlis.  ;)

Setting up "anti-logging" is dead simple. NSA left this handy bash script for debian lying around one of their command & control servers: http://pastebin.com/vyfwkXm8  they also used OpenVZ because apparently forensics on their virtual drives are much more difficult (http://www.securelist.com/en/blog/750/Full_Analysis_of_Flame_s_Command_Control_servers). Doesn't really matter though, not like there won't be logs from the ISP/host of every email that was relayed to you or every ssh login.

And, honestly, I don't see a place for a self-hosted mailserver in this discussion. If your mail is (GPG-)encrypted, a regular mailservice works. If it's not encrypted, consider your mail intercepted, analyzed and manipulated. Right behind your mailserver.

The question is: how much of the traffic are they able to "read?" Is it 10%? 1%? 0.0001%?

I believe (and obviously can't support this) that intercepting packets in flight is still too massive a job for any of the three-letter-agencies to be able to do effectively. That doesn't mean that they aren't trying, but the variables involved in how network packets get routed, the amount of traffic, and the difficulty involved in putting all that data together and building a coherent picture from it on a nanosecond by nanosecond basis are most likely still beyond the capability of any organization. That said, of course that doesn't mean that they aren't trying. The question is: how much of the traffic are they able to "read?" Is it 10%? 1%? 0.0001%?

So I agree that anything not encrypted should be *considered* intercepted, but that doesn't mean that other measures shouldn't be put into place as well.

The fact that the TLAs are still issuing orders to companies like Google and Facebook—and Lavamail—indicate that they still need to read email at the endpoints in order for them to reliably get what they want. The advantage to having mail served by a local server is twofold: first, it makes it necessary for them to show up at my location and serve the warrant (or Security Letter) directly to me, so I know that it is happening. Second, it makes that kind of surveillance much more expensive and difficult to keep secret. You might be able to keep Google and Facebook and Apple shut up about what you're doing, but the more people/companies they order to surrender system passwords, the more some of those people will be squawking about it.

Also, it's not just governments (or our own government) that we need to worry about.

Decentralization is not a silver bullet, but it is nevertheless desirable.

What does The Pirate Bay have to do with this?

Not entirely true about JavaScript and hijacking. If the server is rooted or seized by pigs they can add anything to it. Tormail also did not require JavaScript.

They say that they don't commit crimes so they don't need encryption. But most people still wear pants in public even if they don't hide crimes under them. The ignorance of average computer user is unbelievable.

They say that they don't commit crimes so they don't need encryption. But most people still wear pants in public even if they don't hide crimes under them. The ignorance of average computer user is unbelievable.

1) Most everyone around us already wears pants. Anyone who doesn't faces social (and probably legal) repercussions.
2) Most everyone has been taught to wear pants from a very young age. It has become habituated.
3) There are advertisements everywhere making most everyone think that they will be sexually desirable if they wear the right pants.
4) Most everyone already has a pretty good idea how to use pants.

1) Some of them will find it in hard way that encryption is a must. Our president's adviser found it in hard way http://www.dzeltenais.lv/wp-content/uploads/2012/06/rgle.png and this is he most decent picture that was copied from her hacked e-mail.
2. Let's teach our children how to use encryption from very young age. Let us be the last generation of neanderthals who run around without pants!
3. Let's advertise that 4096-bit RSA keys are more sexy than 2048 ones!
4. Using PGP is not harder than squeezing into pants. At least for person with 130+ IQ

GPG PGP has it's shortcomings also ....

PGP Web of Trust is for preventing use of "fake" keys. It is unnecessary for end-to-end encryption as long as the key fingerprints are verified offline or some other reasonably safe method.

Basics of GPG is no so difficult to understand. The problem is lack of software that uses it by default. To use it one need to install Thunderbird, configure POP3 access, then install GPG and then Enigmail. And configure all of this and store the e-mails on his own computer's harddrive. This process filters out large portion of users who don't care about maintenance of his computer or only use webmail from random computers.Everything has it's shortcomings. When used properly GPG will protect the contents of the message. The sender and recipient still be known to NSA.

And since multiple messages are encrypted with the same static key, if the key is ever compromised, all prior communications are compromised.

Another attack on the Tor network or "just" bots:
https://lists.torproject.org/pipermail/tor-talk/2013-August/029582.html

1) Some of them will find it in hard way that encryption is a must. Our president's adviser found it in hard way http://www.dzeltenais.lv/wp-content/uploads/2012/06/rgle.png and this is he most decent picture that was copied from her hacked e-mail.
2. Let's teach our children how to use encryption from very young age. Let us be the last generation of neanderthals who run around without pants!
3. Let's advertise that 4096-bit RSA keys are more sexy than 2048 ones!
4. Using PGP is not harder than squeezing into pants. At least for person with 130+ IQ

I think everyone should know about and/or use it as email. We need to start a campaign for BitMessage to get it known!

I recently received an email from StarPage and their private email service they claimed to be almost ready to allow beta testers!
I'm excited for this! I haven't received another email since though.  :-\

Starpage? Do you mean StartPage? If this is something different, can you explain more?

No I meant StartPage. Twas a typo my apologies.