Slashdot Mirror
Secure, Web-based E-mail
Cal Godot writes "I've come across this interesting company, HUSMAIL.COM, that provides secure, encrypted, web-based email. They're pretty new, still working out a few kinks, and want people to take a look. (Bug reports should be sent to bugs@hushmail.com, by the way.) The URL is
https://www.hushmail.com
The whole thing works via a Java applet, and requires the latest-greatest web browsers. Source code is also
availible. It's all built around public/private key encryption, using a 1024-bit Diffie-Helman scheme. "
Agreed - but don't forget that this is written for Joe and Sally Sixpack - and for them this is high tech and hushmail will make some money.
Personally, I do not care for any centralized services no matter how 'secure'. Makes it way too easy to for Big Brother to collect data.
Security by encryption? Sure, as long as you use sufficiently random one time pad...
Yay, now my spam and pr0n ads can't get intercepted by the Bad People.
Honestly, what's the point of this? I think it's a good "because I can" project, but there's no real target audience that I can see. Web email = throwaway account = unsecure.
So what's the difference between a brute-force attack and a dictionary attack?
anyone know how to setup the source with Apache? Never had to setup java applets..
A brute force attack is when you attempt to exhaust the entire solution space. Example: If you were to brute force a typical 4 digit PIN, you would try 0000, 0001, 0002, ..., 9998, 9999 since you know it HAS to be one of those 10,000 possibilities.
A dictionary attack is when you take a long list of common words and check if any of them works as the password.
so please explain to me how testing a long list of words is anyless a brute-force attack than testing a long list of numbers? i will help you out a little, there is no real difference! just because the deffinition of elements is different dosent make the method of attack any different.
Just lost my faith in these guys, real security experts should know the difference between brute-force and dictionary attacks.
if you think you know the difference then please explain it to us. in reality there is no difference between a brute-force attack and a dictionary attack. the algorithm used is exactly the same the only thing that is different is the elements compared. if you think this is enough to make them totally seperate attacks then you must also have a very long list of all the different types of brute-force attacks that aren't really brute-force attacks because they use different types of elements.
I thought that looked odd, so I thought I would try to call. I've had the phone or repeat dial for about 3 hours now and all I get is a busy signal. Somethings not right, but what could they be trying to do? It is only free email after all.
If you read their webpage carefully you'd know that they allow users to setup a anonXXXX account, where X is a random number. With this account, they don't ask you for personal information, such as income.
The anonymizer (www.anonymizer.com i think..or is it www.anonymiser.com) tries to do it for you via the web. its the easiest way of remailing.
looks like firewalls kill it - works fine on
a dialup, but not from IBM...
Are you people kidding me? Do you know what this means if what these guys say is true? It means I can send you a 1024-bit secure email without going to college for my "PGP in CS degree". PGP is an installation nightmare, and I can't use it with just anyone, only with other scientists.
More power to 'em.
I couldn't find any leagalease about HushMail's
policy concerning Subpenas and/or Court Ordered
searches. Are they under US juristiction?
For me (I'm no criminal) the ultimate test
of Anonymity and Security would be the systems
ability to deflect a full fledged FBI investigation.
Nothing can beat a chain of CypherPunks remailers
located in a series of Foreign Countries.
Are chains of Anonymous Remailers still available?
How can I decouple my ISP assigned IP address
from my personal identity? I suppose a Free
ISP service accessible from a pay telephone
might work. Any other ideas?
Any company from NATO countries that claim to have *ANY* secure networking software, algorithm, protocol for sale *CANNOT* be trusted.
Unless you don't mind the NSA, FBI, CIA, SIS(UK), SIS(PT), etc, etc smooping through your data.
Actually, theirs a "secure send" option, which works if you send email to other @hushmail.com users. It uses their public key. So this service actually can be used to send 100% secure email, provided you're sending it to another hushmail user. I don't think this is useless, for people who want to send mail while at work, this is a great service.
A brute force attack is when you attempt to exhaust the entire solution space. Example: If you were to brute force a typical 4 digit PIN, you would try 0000, 0001, 0002, ..., 9998, 9999 since you know it HAS to be one of those 10,000 possibilities.
A dictionary attack is when you take a long list of common words and check if any of them works as the password.
Oh my, yes! Go here for lots of up-to-the-minute stats:
http://anon.efga.org/~rlist/
(As an aside, it really irritates me when people think remailers don't exit anymore because anon.penet.fi went away a long time ago.)
After generating entropy and entering my passphrase, I get:
"I'm sorry, there has been an error. Please try again later."
--
Posted by NJViking:
Hmm.. neither of those sites appear to be working.
-= NJV =-
The exploits in all the other web based email systems (particularly hotmail, although I suspect they are just targeted because they are big) have been based on browser bugs, and Javascript deficiencies. What's to say that something running as Java won't suffer from similar problems? I know there's the sandbox there, but will that be enough (i.e. there might be bugs in their server configuration or any other possible point of entry)? And do enough people care?
,hacker Perl another Just)'
For me, I don't care about the security of my email, just that I can get it 24/7 and quickly (which is why I dumped hotmail for joymail). I honestly don't think that many people will care enough to use Java for their email. Especially not considering how slow it is. Still, I might just create an account, just for a laugh...
Matt.
perl -e 'print scalar reverse q(\)-:
Matt. Want XML + Apache + Stylesheets? Get AxKit.
Short story is that the DH encryption problem really isn't the same as the knapsack problem--some unimportant simplifications turned out to be important.
I believe you miunderstood the previous poster. He meant you can't use a POP3 client to read mail, which almost no free e-mail services offer, while you are refering to using Hotmail or Yahoo! to retrieve POP3 mail, which practically any free e-mail service under the sun offers.
In other words, you both are correct.
I used to use MailExcite for my domains due to the spam I KNEW I would get (do a whois on my domain, the-corridor.com, for example). Also, they're a privacy oriented company, it's only natural for them to use public mail servers for e-mail.
Now, if they were at aol.com, I'd be nervous.
"perl -e 'print scalar reverse q(\)-: ,hacker Perl another Just)' "
,hacker Perl another Just\)'"
Uhhm... shouldn't that be:
"perl -e 'print scalar reverse q(\)-:
(Note the *last* "\")
I understand their need to make a living. Yet, they don't mention anything about it being for statistical purposes. Also, anytime I see the "annual income" box in a web form, it is an optional field, but theirs is required.
I tried to set-up an account just to see what they're all about. For a company that is so interested in the users' privicy, they sure ask you a lot of personal questions. For example, why would they need to know people's income?
/. running a email redirecting service? I wouldn't mind paying 50 bucks or so to support /. while getting an "@slashdot.org" address. :)
BTW, what are the chances of
yahoo most certainly does have pop access and i believe hotmail does as well.
"The lie, Mr. Mulder, is most convincingly hidden between two truths."
--
And Justice for None
NSI says the company is in Texas and yet they are allowing open download of encryption software including source. Doesn't this violate ITAR?
Those bastards lured me in with free Pop access and email forwarding and then switched to 'offering' every little option at a dollar a month each. They stayed free long enough to let people become reasonably dependent upon them, and then made their move.
Lesson learned, I reckon.
These guys could do the same. "Look!" "We're free! We're secure! We have no heads!"
Whatever they do is just a bit of flash to get you to click on their banner ads, intentionally or otherwise. Inevitably, they will look into more annoying ways to get you to click on even more banner ads, making sure it takes a good long time for you to read even a single message so their sponsors know you're soaking in all that advertising.
I understand and sympathize with the motivation for this, but have no interest in taking part in their little business.
**>>BELCH
Some people here posted about not trusting the Java app to be secure. Apparently, they've already thought of that. They seem to "get it" as far as security. Here's an excerpt from the FAQ page:
How can it be proved that the HushMail system is actually secure?
Simply put, the most important aspect of any computer security system is the ability for lots people to test it as well as possible. The Java Source Code of HushMail is available to everyone, free. Security experts worldwide have the unrestricted ability to try and find any security holes. We are completely open to this form of peer review, as we believe this makes for the strongest systems available today. Our source code is open to you. Please view it at your leisure. It can be found at http://www.cypherpunks.ai/~hush/hush-src.102.zip. In addition, a description of the functionality of the system is available here.
I have at least one reason I would use something like this: If I want an anonymous account that can't be traced back to me in case I don't want my job or people I know knowing it's me. This is an easy way of doing it without needing an anonymous remailer.
Not everyone has a local system to install PGP onto.
Who's this for? The same crowd that uses Yahoo mail, hotmail, etc. Joke all you want, but there are legitimate uses. Notably, for people who can't afford to own a computer and must do all online activity through browsers at libraries, schools, cafes, etc. You'd be surprised how many homeless people have an active online presence.
Granted, they'll never be secure as long as they trust this third party to handle their encryption. But it's a couple steps better than unencrypted Web-based email.
I'm really glad this is happening. With luck, all the other Web-based email services will add encryption too, at least in the mail that gets sent out. The sooner we have a critical mass of the email world using encryption, the sooner it will be considered standard.
Here's an excerpt their WHOIS db entry:
Domain Name: HUSHMAIL.COM
Administrative Contact:
Hush Communications, Admin acct. (HC507-ORG) hushadmn@HOTMAIL.COM
(512)-441-0205
Fax- (512)-441-8052
Technical Contact, Zone Contact:
Hush Communications, Tech acct. (HC508-ORG) hushtech@YAHOO.COM
(512)-441-0205
Fax- (512)-441-8052
Billing Contact:
Hush Communications, Admin acct. (HC507-ORG) hushadmn@HOTMAIL.COM
(512)-441-0205
Fax- (512)-441-8052
Note the Hotmail and Yahoo accounts listed.
I do have a few questions about the source (to wipe a message from memory, they overwrite with a
:)
*static* *number* of -'s, and I don't see where they limit the size of the message to that size...
Just as an example.)
But still, I see this as a big step up from, say, hotmail. No passwords being sent in the clear
accross the net... (is that the case for hotmail? I'm not sure - never used it.
Maybe someone'll become ambitious and work in some cryptix code so you *could* send encrypted mail to
non-hush users...
Of course, I tried to create an account twice and isn't working. Not that I have use for such an
account.
1. Dictionary attack on your encrypted private key by a Hushmail employee. You're being asked to trust Hushmail to prevent this.
2. Outside attacker hacks Hushmail, gets your encrypted private key, runs dictionary attack. You're being asked to trust Hushmail to prevent this.
3. You access Hushmail from some public machine, and the machine you're on pulls your decrypted private key right out of the Hushmail applet.
Yellow dog linux is very good, give it a try you'll be suprised
------------------------------- duross@scnc.lesa.k12.mi.us * Brian DuRoss Webmaster - LESA - LAWMASC * http://scnc.les
https://www.mailandnews.com has been offering this service for a long time. And they do news, too.
(azul@azul)-(59/ttyp2)-(05/14/99:01:43pm)--
(~/html/newearth/newearth/src)-- telnet mta-x1.yahoomail.com pop3
Trying 205.180.60.117...
telnet: connect to address 205.180.60.117: Connection refused
telnet: connect to address 205.180.60.58: Connection refused
telnet: connect to address 205.180.60.224: Connection refused
telnet: connect to address 205.180.60.30: Connection refused
telnet: connect to address 205.180.60.116: Connection refused
telnet: connect to address 205.180.60.125: Connection refused
telnet: connect to address 205.180.60.83: Connection refused
telnet: Unable to connect to remote host: Connection refused
(azul@azul)-(60/ttyp2)-(05/14/99:01:43pm)--
(~/html/newearth/newearth/src)-- telnet pop3.yahoo.com pop3
pop3.yahoo.com: Unknown host
(azul@azul)-(61/ttyp2)-(05/14/99:01:44pm)--
(~/html/newearth/newearth/src)-- telnet mail.yahoo.com pop3
Trying 205.180.60.98...
telnet: connect to address 205.180.60.98: Connection refused
telnet: connect to address 205.180.60.97: Connection refused
telnet: Unable to connect to remote host: Connection refused
(azul@azul)-(62/ttyp2)-(05/14/99:01:44pm)--
(~/html/newearth/newearth/src)--
What's their POP3 server?
Alejo.
You know, the people who often write those little tid bits on the web page aren't usually the "security experts". They are most likely marketing people with no in depth understanding of the technology. Would you hold a job as a security consultant writing these things?? I dont think so, so let it be, you cant always be 100% correct, at least they let people know that they are somewhat protected from an attempt to crack their password. Most people do not know the difference between a brute-force attack and a dictionary attack, and they never will, nor will they ever need to, they just want to know they are protected, eve just a little bit
No legalese, but they did in fact seem to address this in their FAQ (even while making no specific committments.)
From Hushmail's FAQ:
Your reference to the FBI implies you are in the United States. The years I spent in that country certainly show it to be an "oppressed nation," (and becoming more so with the passage of time.)
I agree, chained remailers are the best solution (and yes, of course they are still available.)
Re: free ISP/pay telephones: Public access terminals such as libraries may be a lower-tech solution, especially if the site doesn't log identities with time of use. It still ties the message to a geographic location of course though, but offers the advantage of being a method accessible to greater numbers of users. After all, if "everyone" used anonymous/secure mailing on a routine basis, it would stand out less and would result in a more spook-unfriendly solution, which seems to be your desire. Two ends would be acheived, one, the volume the spooks would need to process (thereby increasing their budgets to the point of accountability,) and two, the "mindshare" in the general populus.
All in all, while Hushmail may be far from a perfect solution, I am glad to see the trend toward increased awareness of privacy issues which it represents. Now what we need to do is educate the masses about the concept that weak privacy is worse than none at all (similar to the argument presented in PGP's docs in early versions.)
BTW, I have not yet examined the source code for Hushmail (but also don't have an account there so can be "forgiven." :) )
Have others here yet? Is it secure?
The difference. Pay attention this time
And if that doesn't work, paste the following into your browser heheh.http://slashdot.org/comments.pl?sid=99/05/14/125 2215&pid=488#803
(Perhaps I shouldn't attempt to educate ignorant AC's in the future? Nah, that's no solution.)
TIME.
Since you're an AC, you wouldn't be filtering out AC comments, so I'll not include a pointer to my other replies. A password buys time, nothing more. If that time is sufficient, it is acceptable.
I just tried it. How does one send? Lynx doesn't offer me anything other than a "send.htm" link at the top, which appears to be an infinite loop.
Example time. You have a password, say it's 8 characters long. For the sake of simplicity-of-example, let's say all characters must be alphabetic and upper-case. (Obviously, this is a very insecure system, but it's only for example.)
Let's say you are lame, and choose P-A-S-S-W-O-R-D.
If a cracker attempts to break your password by manually trying each word in a dictionary, this could take a long time, but would certainly succeed. If the same cracker automates the process by trying each word in a text file such as /usr/dict/words, it would take a lot less time, and also be certain to succeed.
The above is known as a "dictionary attack" for obvious reasons. BTW, the more effective variations include subverting such common lame attempts to "improve" ths security of a password by changing letters to numbers (password -> passw0rd) by including these variants in the text file (or a tiny algorithm) so don't rely upon such.
Let's say you instead chose N-X-B-Q-R-K-Y-V as your password.
A dictionary attack would not succeed against such a password. Not only is N-X-B-Q-R-K-Y-V not to be found in Merriam-Webster, but it is not contained in any of the enhanced lists of "words" that are available for password cracking.
Can a cracker defeat such a password? Certainly. Manually, it would require a ridiculous amount of typing (or phenomenal luck.) But how about an automated solution?
It is trivial to write a routine to test A-A-A-A-A-A-A-A, then A-A-A-A-A-A-A-B, then A-A-A-A-A-A-A-C, and so on (which is known as a "brute force" attack, btw.) Writing the routine isn't the issue, running it is. The security of a password is based solely upon *how*long* it takes an attacker to guess it, right?
A brute force attack, by definition, will always succeed, if carried out to completion, since, by definition, it tests every possible combination of characters. A dictionary attack will only succeed against "common" passwords (such as those containing only "words" (or variants) and their combinations (such as TASTY-BUG.)) The advantage of a dictionary attack over a brute force attack is that it takes a lot less time to run, and is likely to be successful much sooner, since most people, sadly enough, are either lazy or uneducated or perhaps both, and choose very insecure passwords/passphrases.
Now, let's leave the world of this example, and enter the world of more security. Passwords would not be limited to just A through Z. We could add 0 through 9. Each additional possible character would increase the number of potential passwords exponentially, since each of the eight positions could now contain that character. We could then remove the case sensitivity requirement and add a through z. We could then add a number of "special characters." To add each of these to the above brute force routine would also be trivial, taking well under a minute. To actually run that routine through to completion however would become more and more time-consuming, to the point of being "unattainable" using (ahem) "today's technology" (especially if we removed the eight-character restriction.) For more on this principle, consult a math text book regarding "permutations." :-)
Password "security" == Estimated-time-to-crack-it. A "good" password will protect longer than the data inside needs protection. "Foever" requires more than just a password/passphrase.
Except that they do offer the ability to set up an anonNNNNN account.
Well, well, well; three holes in the ground...
My browser is unstable enough as it is.
btw check what they say about passphrases: Note that the passphrase in our example is not a common phrase, such as a quote, a song lyric, or a general exclamation that could be compromised via hacker "brute-force" attacks.
Just lost my faith in these guys, real security experts should know the difference between brute-force and dictionary attacks.
No, the original is correct. The syntax q(blah) in Perl is a special syntax that quotes the string blah or whatever else is inside it. That's why he backslashes the first right parenthesis, so it doesn't terminate the string for the smiley, but the second one isn't escaped because it validly terminates the string.
----------
In a real emergency, we would have all fled in terror, and you would not have been notified.
There is a web page smail.org which does the same. Secure Mail. This is not really a new thing. The domain name is a bit messed up right now, but I think going to https://secure.refract.com/smail/ also works.
-Nicholas Blasgen
i'm sure the java solution performs the encryption locally and never sends anything plaintext to the hushmail server (otherwise what would be the point) but it seems to be more hassle than it's worth.
i'm not saying this isn't useful; i'm just curious as to exactly what demographic they're aiming at. people who are already anal about their privacy will know how to do their own secure email; and people who don't go crazy about privacy and/or don't know how to use PGP will probably just go and use a more straightforward webmail service.
-- in china, chinese food is just called food.
I set up an account, only to find that you can only encrypt to other husmail [sic] accounts. What about standards, folks? PGP, S/MIME? I really don't think we need another "patent pending" encryption system. I'm pleased to see they're using blowfish, but why not use PGP then? Doesn't PGP6 support blowfish?
Jason Dufair
"Those who know don't have the words to tell
Jason Dufair
"Those who know don't have the words to tell
and the ones with the words don't know too w
Check out the website. Looks like more of the same.
Todd
Well, it looks more like a commodity web-based e-mail, but running on a SSL-enabled server. Their FAQ plainly states that only e-mail sent to another hushmail user is secure. Duh...
PGP all the way!
I think you're mistaken, this isn't splitting hairs. They made a wildly inaccurate claim. They claim 'brute force' won't find a non dictionary word. But that's exactly what brute force is, brute force is testing EVERY possible combination.
;*)
Sure their email may be secure vs a basic dictionary attack. But they're using "brute force" cause it's a buzz word, without even understanding what the phrase means. In any case, as has been pointed out, their intended audience won't know/care about the difference.
-Michael
perl -e 'print join " ",reverse split " ", ":-) hacker, Perl another Just"'
,hacker Perl another Just)' yields: :-)
:-)
Is their a better way?
(of taking a string, reversing the space seperated fields, as opposed to reversing the fields themselves?)
perl -e 'print scalar reverse q(\)-:
tsuJ rehtona lreP rekcah,
Which may actually be the intended result. The one I listed yields:
Just another Perl hacker,
Given the input string as he had it. Is their an easy way to get the result I got? (note I modified the input string a little...)
Looking for short 1-liners here.
-Michael
Anonymity doesn't have much to do with encryption. Just because they provide the encryption service does not mean that they don't keep logs of connections. If they do, a message, even encrypted, can be traced back to you quite easily.
Until recently the simple way to be anonymous was to set up a hotmail account through www.anonymizer.com and access it only through the anonymizer. Unfortunately, this is broken now, although I'm sure it's easy to find a free e-mail service that works through the anonymizer.
If you are interested in practical anonymity, check out www.zeroknowledge.com. Of course, there is a bunch of other resources on the net.
Kaa
Kaa
Kaa's Law: In any sufficiently large group of people most are idiots.
I have looked at the source and there are some issues with it. For example: on connection setup the random number generator is seeded with the current date/time.
I contacted them and they confirmed that these issues are known and that they are working on a new version.
USA.net was free for years, and really, the only options they are charging for are POP access and email forwarding, something that not even hotmail and yahoo.mail offer. And these two services can be used and allow the user never to see usa.net's ads which is what pays for the service. No bother, if you have an Amex card, you can still use those two services free, they just move you to the amexmail server, which they host, and you keep your usa.net address. I've been a happy user of usa.net for years now, no problems for the price.
This taken from Yahoo's email help desk from my account: "Can I use other Email (POP3) clients, like Eudora or Netscape Mail, to access my Yahoo! Mail account? As a web-based email service, Yahoo! Mail does not currently offer access to POP or SMTP servers. This means that you will not be able to use an external email client such as Netscape Mail, Eudora, or Outlook to access your Yahoo! Mail account. " I have checked Hotmail in the past and they are the same way. Granted, both all three services let you access pop accounts that are external and read mail through them, but USA.net is the only one I have found that lets you get your USA.net email from their pop service in to your own email client.
Splitting hairs... Testing all words in a dictionary is some form of an optimized brute force attack. I guess they made their point to the average user, don't take real-world passwords. Yepp, they didn't use the word 'hacker' in an appropriate way either. Just because someone wasn't able to employ perfect terminology doesn't mean the whole system doesn't work.
I'm not sure how many people, but for once linux is ahed of the Mac... it seems that whilst the aforementioned mail company's site will work with Windoze and Linux, it's still not working with the Apple Macs...
There are several freemail servers out there which offer web/pop3/forwarding e.g. http://www.emailaddresses.com -- usa.net is most certainly NOT the only one.
Albeit slowly, both hotmail and yahoo can now be retrieved by any email client by using CWebMail http://www.cwebmail.com.
Before beginning to charge for their POP3 access, usa.net's POP server performance was very unreliable -- timing out 50% of the time.
Admittedly, usa.net's email forwarding service is the best out there, offering variable selective filtering to an unlimited number of addresses. It is good for setting up an intermediate forwarding router for web-hosted domains not having POP/IMAP facility available on full server or virtual server services e.g. http://www.esosoft.net. This is worth $1.00 per month -- otherwise there are many other free forwarding services out there -- some include Web/POP3 access, too.
American Express bought a huge chunk of and a large seat on the board so it is not surprising that usa.net started charging for these basic services (or giving them for free to AMEX card holders).
sennin