If you care about digital security, you should ditch whatever chat program you're using and switch to it right now. The app is specifically designed to protect location and routing information ( by using Tor) and chat data in transit (by using the open source Off-The-Record, or OTR, protocol). For anyone who has used a similar app (like Pidgin or Adium), Tor Messenger’s interface will be fairly self-explanatory, but there are two notable quirks.įirst, by default, it will not allow you to send messages to someone who doesn’t support OTR-but there is an option to disable that feature. Second, unlike Pidgin or Adium, Tor Messenger cannot log chats, which is handy if you’re privacy-minded. It's easy to download and install Tor Messenger on your platform of choice. After starting it up, the opening screen will ask you to set up your accounts. Tor Messenger supports a lot of your favorite chat protocols, including Google (GChat), Yahoo, Facebook, and any XMPP (formerly Jabber) account. (If you use Google/GChat with two-factor authentication, know that you’ll need to set up an app-specific password for use within Tor Messenger.) Notably, if you’re still using an AOL Instant Messenger account, you’re out of luck. Need some practice?You can test your setup by chatting with me (seriously!) :Īdd my username to your contact list: OTR fingerprint is: 4311DE8B 2192705B 0B0BCF5D 04C447EE D8A43804This is crucial to making sure that someone isn’t impersonating you or your contact, and it's important that both parties verify each other. An OTR fingerprint, which can and should be public (I've tweeted mine and posted them in multiple places online), is a way to make 100 percent sure that the right account matches the right person on the right machine. ![]() In other words, it mitigates man-in-the-middle attacks. When Washington Post reporter Barton Gellman was chatting with Ed Snowden in Hong Kong, he almost missed him after initially sending the wrong fingerprint-Snowden briefly thought Gellman was an impostor. In other chat apps (like Adium), key verification is usually done manually, simply by comparing the purported fingerprint to one that you know is authentic. ![]() If they match, you’re almost certainly talking to me.įor example, if you’re chatting with me, my chat app will broadcast my fingerprint, which should match my known one. This method of key verification is tedious, and it requires examining each purported number and letter "4311D38B…" to the known authentic one. FACEBOOK CHAT FOR TOR MESSENGER PASSWORD. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |