How to send "broadcast messages" with Bitmessage and how to make a pseudo-mailing-list

[If you are not familiar with the Bitmessage, read my previous post Crypto-messaging peer-to-peer protocol Bitmessage is gaining popularity.]

It is like Twitter without the character limit.

If you want just to broadcast messages to your readers, you can use your own public Bitmessage address (your Bitmessage address listed on your website). Just click on "Send" tab and select "Broadcast to everyone who is subscribed to your address".



Broadcasts are encrypted with the public key (Bitmessage address) of the sender. This means that anyone who knows your Bitmessage address (and is subscribed to your broadcasts) can decrypt and read your broadcasts.

The recipients must add your address to the "Subscriptions":


I did some tests and they show that subscribers may not receive all of your broadcast messages sent prior to subscription.

Do not confuse this (sending broadcast messages) with the pseudo-mailng-lists. If you want to run a pseudo-mailng-list, you should make new address and then change these settings:

1. Click on your new identity with the right mouse button and choose "Special address behaviour...".


2. Select "Behave as a pseudo-mailing-list address".


Warning! All messages sent to a pseudo-mailing-list address (regardless of sender - anyone can send messages to this address) will be automatically broadcast to all subscribers (and thus will be public).

You should be careful to not change the default settings ("Behave as a normal address") for your private Bitmessage address. If you just want to send "broadcast messages" to your subscribers, you should not turn on the "pseudo-mailing-list" properties of your address. If you want to make a pseudo-mailing-list - make another address and never send to it private messages.

Even if Bitmessage is a decentralized p2p network, mailing lists require the client who operates the list (where the private key of the pseudo-mailing-list address is located) to be online, creating a single point of failure (this type of list is called "centralized mailing list").

This issue can be circumvented by making the private key public (third party application should be used for signing the messages, for example OpenPGP, if signature is needed). This type of list is called "decentralized mailing list" or "Chan" (short for channel) because they usually focus on a subject which usually is the password for the deterministic address too.

Read more:

Comments

Post a Comment

Popular posts from this blog

[fixed] "Evolution is currently offline due to a network outage."

Evolution is currently offline due to a network outage. Evolution will return to online mode once a network connection is established. If you have this error when updating your system (for example, from Ubuntu 14 to Ubuntu 16), the solution is to run Evolution with this command: evolution --force-online That is usually related to a combination of evolution, dbus, and NetworkManager. With all three installed the idea was that NM would say whether it had a working network or not over dbus. Tools like evolution would ask on dbus about the state of the network and switch to online or offline as networks were hotplugged. This breaks down when the network isn't managed by NM but NM is still running. Such as when /etc/network/interfaces is configured to use ifupdown instead. If NM is running then it won't have any networks under its control and it fails to recognize that the system does actually have a network running outside of its control. It will respond to evolution
Read more

Do not use (only) flash memory (SSD drives, hardware wallets, USB flash drives) for your precious private keys!

Image
Flash memory is not a reliable medium for archives. Especially when there is no regular power. I have personal experience with usb flash drive not powered for weeks - one file became corrupted . (Read more here: Archiving private keys - TLDR version. ) You should always back up on paper and other mediums. Flash memory is prone to failure if it is not powered for weeks or more and if there are ionizing radiation When you write your precious private keys you should use technologies like Parchive and ZFS . And make several copies of your files. It's OK if you use your USB flash drive for another backup, but don't rely on it! Always back up on DVDs (even small files!), paper and online (after encryption with CPU and RAM intensive key derivative function like scrypt). Here is example of using the scrypt utility: $ sudo apt-get install scrypt $ scrypt enc -M 1073741824 -t 200 secret.txt encrypted.scrypt Do not use default values of "-M" and "-t", they
Read more

Archiving private keys - TLDR version

0. Make multiple encrypted copies. On DVDs (they are better than CDs and Blu-Ray discs; DVD+R are better than DVD-R), paper, cloud services like DropBox, OneDrive, Google Drive, e-mail it to yourself and to your friends, use P2P storage services like MaidSafe, Storj and Sia , etc. 1. Use proper font when printing PGP encrypted keys on paper. 2. Flash memory (SSD, USB flash drives, hardware wallets) is less reliable when not powered regularly (i.e. every week). 3. Use error correction methods like Parchive and ZFS. 4. Print on paper or store on digital media only encrypted data. 5. Your encryption software should use CPU/RAM-intensive KDF (i.e. scrypt with secure options - do not use defaults! ). First, encrypt with scrypt and then encrypt it again with PGP (using different password!) in ASCII armor mode before print it (other methods like QR codes may not be reliable as multiple copies of the PGP ASCII armor). Do not use the same password for the PGP because it's easy to brute
Read more
[ad removed]