Yep, mine too I guess ... I don't post much but I look a lot..bummer.
I just don't do the "re-confirm" thing..I've seen scams 5-6 pages deep to make it believable.
But beyond that I just don't wanna..lol
Asked to Re-confirm
- Thread starter Admin
- Start date
- Status
I just don't do the "re-confirm" thing..I've seen scams 5-6 pages deep to make it believable.
But beyond that I just don't wanna..lol
wyteberrywidow
Global
What were you before?
^^lol why don't you put your address down too
I recieved the email this morning. I to wasn't about to confirm anything. When I opened the email it just looked fishy. I'm not scared of the po-po coming to my house but I don't want them busting in my door a 2am with automatic weapons waving around and them breaking all my shit because I am a member of this forum. I won't be giving anything out to some 3rd party company so it's been fun RIU and I'll sign back up once my acct is deleted.
I recieved the email this morning. I to wasn't about to confirm anything. When I opened the email it just looked fishy. I'm not scared of the po-po coming to my house but I don't want them busting in my door a 2am with automatic weapons waving around and them breaking all my shit because I am a member of this forum. I won't be giving anything out to some 3rd party company so it's been fun RIU and I'll sign back up once my acct is deleted.
Smuggler
Active Member
This all works well Doc and something I need to remember when using Hush Mail is to always compose, send or reply within the Hush Mail window.All you have to do is open a hushmail account. Go into 'my rollitup' and edit e-mail/password. Change your e-mail. You will get a confirmation from RIU e-mailed to you. Just click on it and it will take you here and say something like "This account already exists" or something to that effect. That's it. Done! If you are worried about your e-mail account, just don't log into it for at least 3 weeks and it gets deleted. It is free to sign up and takes about 2 1/2 minutes. Not difficult or sketch at all.
Don't link or retrieve Hush Mail with your normal email account as that will include the source information from your computers ip.
This way, the properties information attached to the email is forwarded as coming from the Hush mail ip address and not your computers ip.
If this information is incorrect, will someone in IT please set me straight? Smuggler
ganjaluvr
Well-Known Member
Everyone, the email your talking about.. is 100% safe. It's legit... I kinda freaked out too when I first read it. But, its legit. I did some research on the email.. and where it came from.. as well as the domain that is contained in the confirmation link.
Everythings safe.. and if it wasn't... I wouldn't tell everyone that it was. So yeah, if you want to keep your current account.. please confirm your email.
However, when I clicked on it... It gave me this message:
'Your account has already been activated so please try logging in.' So I assume that I'm all confirmed and everything??
I better not lose my account... because I did what was requested of me.
peace..
Everythings safe.. and if it wasn't... I wouldn't tell everyone that it was. So yeah, if you want to keep your current account.. please confirm your email.
However, when I clicked on it... It gave me this message:
'Your account has already been activated so please try logging in.' So I assume that I'm all confirmed and everything??
I better not lose my account... because I did what was requested of me.
peace..
genitalwarts
Member
ok...ive replied,,,,back to harvesting.
1STxTimeGrower
Member
Re confirm please?
lostintime420
Active Member
How do I reconfirm? just login?
You guys need to read the email it clearly states why, you can hold out until your account gets deleted however I am not going through each individual account to keep a select few. It is your choice do it or dont do it. However I guarantee you any large forum is going to tell you to confirm your email account.
Yup, either the board ops want to know more about us or the feds/leos do... Bad move guys. You don't need our email address anyway...
npcomplete
Member
Yes, the bigger sites do ask you to confirm. Another thing they do is delete all past posts from a deleted username, or change the post author from the original username to a name like "guest". I have seen this personally on some large forums (and I won't spam other forum's names here). Obviously with "one post total" it is not a big concern for me personally, but taking a user with multiple prior-posts, and then letting somebody new post under that name will just cause confusion. New users always mean new personality. That shows in their posts. Have you really thought this one through?
So I guess this was my introductory post...
So I guess this was my introductory post...
tip top toker
Well-Known Member
You'll have to delete my account then, i registerd to rollitup.org, not some random 3rd party newletter sending company bi have no interest in. No forum i've ever used has asked me to register my email adress for the use of a 3rd party. (i also like the irony of creating fake accounts on someone elses server, just so that some fake accounts on this one can be easily removed).
The only way to know for sure is to send yourself a message then carefully inspect the headers, select show all headers in your email client software and see if your home IP address is in there anywhere. I'm *guessing* they wouldn't do that since it would kill the privacy but it's certainly possible since your IP address is exposed to their web application that you're composing mail in.
Of course the same applies to this site, if the authorities compel the owner of this site to reveal server logs they can *easily* tie your account and posting to your IP address.
If you want ultimate privacy you need to use a secure router that is a stand between that provides *their* IP address instead of yours when you access sites. the TOR project is just such a thing and is used by political dissidents around the world, I used to use it but the encrypting browser that comes with it means you always have to remember and type in your login and passwords and that became a pain in the butt for me. But others might find it worth while: http://www.torproject.org/
However I came across this link in my first search for Hushmail and privacy:
http://www.dslreports.com/forum/r19406112-Hushmail-privacy-goes-bye-bye
Snippets from that thread:
"Hushmail, a longtime provider of encrypted web-based email, markets itself by saying that "not even a Hushmail employee with access to our servers can read your encrypted e-mail, since each message is uniquely encoded before it leaves your computer."
But it turns out that statement seems not to apply to individuals targeted by government agencies that are able to convince a Canadian court to serve a court order on the company.
A September court document from a federal prosecution of alleged steroid dealers reveals the Canadian company turned over 12 CDs worth of e-mails from three Hushmail accounts, following a court order obtained through a mutual assistance treaty between the U.S. and Canada. The charging document alleges that many Chinese wholesale steroid chemical providers, underground laboratories and steroid retailers do business over Hushmail.
The court revelation demonstrates a privacy risk in a relatively-new, simple webmail offering by Hushmail, which the company acknowledges is less secure than its signature product.
A subsequent and refreshingly frank e-mail interview with Hushmail's CTO seems to indicate that government agencies can also order their way into individual accounts on Hushmail's ultra-secure web-based e-mail service, which relies on a browser-based Java encryption engine..."
And...
"quote:
So in 2006, Hushmail began offering a service more akin to traditional web mail. Users connect to the service via a SSL (»https://) connection and Hushmail runs the Encryption Engine on their side. Users then tell the server-side engine what the right passphrase is and all the messages in the account can then be read as they would in any other web-based email account.
The rub of that option is that Hushmail has -- even if only for a brief moment -- a copy of your passphrase. As they disclose in the technical comparison of the two options, this means that an attacker with access to Hushmail's servers can get at the passphrase and thus all of the messages.
In the case of the alleged steroid dealer, the feds seemed to compel Hushmail to exploit this hole, store the suspects' secret passphrase or decryption key, decrypt their messages and hand them over.
quote:
[Hushmail] is useful for avoiding general Carnivore-type government surveillance, and protecting your data from hackers, but definitely not suitable for protecting your data if you are engaging in illegal activity that could result in a Canadian court order.
That's also backed up by the fact that all Hushmail users agree to our terms of service, which state that Hushmail is not to be used for illegal activity. However, when using Hushmail, users can be assured that no access to data, including server logs, etc., will be granted without a specific court order.
Smith also says that it only accepts court orders issued by the British Columbia Supreme Court and that non-Canadian cops have to make a formal request to the Canadian government whose Justice Department then applies, with sworn affidavits, for a court order.
We receive many requests for information from law enforcement authorities, including subpoenas, but on being made aware of the requirements, a large percentage of them do not proceed.
To date, we have not challenged a court order in court, as we have made it clear that the court orders that we would accept must follow our guidelines of requiring only actions that can be limited to the specific user accounts named in the court order. That is to say, any sort of requirement for broad data collection would not be acceptable.
--"
What is the jurisdiction for your web site? Where on earth is it located? Also do you keep track of anyone's IP addresses for any period of time (i.e. server logs etc) because when LEO come knocking that's the first thing they ask for, if you don't have it you can't provide it, if you do then we're all fucked.
Ahh..found the original source article about Hushmail:
http://www.wired.com/threatlevel/2007/11/encrypted-e-mai/
http://www.wired.com/threatlevel/2007/11/encrypted-e-mai/
Green Love
Well-Known Member
Here's your chance ladies and gentlemen, get your account deleted... You know I always wanted my account deleted, but decided to stick around. I smoke pot. lol. It's known worldwide. First thought that came to mind was blackmail, Exposure, where's my money, I'm rich, filthy rich. oops, fig leaf!!
- Status