- Tor messenger torproject manual#
- Tor messenger torproject password#
- Tor messenger torproject download#
To verify an OTR fingerprint over Tor Messenger using this method, you need to come up with some commonly understood word or phrase and send it to your contact via another secure and private means.
Tor messenger torproject manual#
In addition to the manual key verification option, Tor Messenger has added a new "shared secret" option. Humans are not good at comparing random long strings of numbers and letters, so Tor Messenger has come up with a good way of solving this problem. This method of key verification is tedious, and it requires examining each purported number and letter "4311D38B…" to the known authentic one. If they match, you’re almost certainly talking to me. For example, if you’re chatting with me, my chat app will broadcast my fingerprint, which should match my known one. In other chat apps (like Adium), key verification is usually done manually, simply by comparing the purported fingerprint to one that you know is authentic. When Washington Post reporter Barton Gellman was chatting with Ed Snowden in Hong Kong, he almost missed him after initially sending the wrong fingerprint-Snowden briefly thought Gellman was an impostor. In other words, it mitigates man-in-the-middle attacks. An OTR fingerprint, which can and should be public (I've tweeted mine and posted them in multiple places online), is a way to make 100 percent sure that the right account matches the right person on the right machine.
Need some practice?You can test your setup by chatting with me (seriously!) :Īdd my username to your contact list: OTR fingerprint is: 4311DE8B 2192705B 0B0BCF5D 04C447EE D8A43804This is crucial to making sure that someone isn’t impersonating you or your contact, and it's important that both parties verify each other.
Tor messenger torproject password#
(If you use Google/GChat with two-factor authentication, know that you’ll need to set up an app-specific password for use within Tor Messenger.) Notably, if you’re still using an AOL Instant Messenger account, you’re out of luck. Tor Messenger supports a lot of your favorite chat protocols, including Google (GChat), Yahoo, Facebook, and any XMPP (formerly Jabber) account. After starting it up, the opening screen will ask you to set up your accounts.
Tor messenger torproject download#
It's easy to download and install Tor Messenger on your platform of choice. Second, unlike Pidgin or Adium, Tor Messenger cannot log chats, which is handy if you’re privacy-minded. For anyone who has used a similar app (like Pidgin or Adium), Tor Messenger’s interface will be fairly self-explanatory, but there are two notable quirks.įirst, by default, it will not allow you to send messages to someone who doesn’t support OTR-but there is an option to disable that feature. The app is specifically designed to protect location and routing information ( by using Tor) and chat data in transit (by using the open source Off-The-Record, or OTR, protocol). If you care about digital security, you should ditch whatever chat program you're using and switch to it right now. On Thursday, the Tor Project released its first public beta of Tor Messenger, an easy-to-use, unified chat app that has security and cryptography baked in.
0 kommentar(er)
