I think this comment is a good example of why people don’t like physical methods. It just seems so hand-wavy, like homeopathic medicine. How do you judge how well it will work in a given situation? Physical privacy is just dependent on too many unknowns. And privacy techniques for the user have not improved in the past 100 years, meanwhile surveillance and location tracking algorithms for the authorities have progressed.

Digital privacy continues to improve every year. Andbody can use Tor and Monero, and benefit from the research and development behind them. Anybody can audit the tech, and build on top of it. Right now darknet markets are clunky to use, but they definitely feel better than they did 5 years ago, and they’ll keep getting better.

Anyways thanks for engaging in this discussing with me, it definitely helped me explore these ideas deeper.

Keep your nose clean out there, you never know whose gonna be looking in 20 years…

depending on your juridiction, the statute of limitations should save you after 20 years :)

yes, in this case it wouldn’t be obvious. Unless you can figure out a clear way to distinguish between a person who made an account and then started using it with Tor, vs somebody who made an account, sold it on the darknet, and the buyer started using it with Tor

You can’t just throw a 30 minute youtube link and expect people to watch it. At least give a gist of your point, and provide the video as extra context/depth.

This is why I just use darknet markets instead. Buying a new account takes only a few minutes, without leaving the house

I mention “anonymous” in the title, and many times in the post, and explained the scenario at the start of the post. It’s true that the mainstream does not need anonymity, but anonymity was clearly the goal of the post.

And I agree that this method alone won’t save you from the feds. It’s just one tool in the arsenal

Regulation means nothing, if the feds want to track people there’s endless strings they can pull. Plenty of evidence online of feds intercepting packages and bugging devices. They can even use illegal means and then use parallel construction.

On the other hand, just because the feds collect a bunch of dsta to be decrypted later, doesn’t mean they actually will. Encryption is very rarely cracked, it’s far more difficult than tracking people down via camera footage. Not to mention, statute of limitations means that even if they crack it 20 years later, the data might be useless by then.

Fact is, I can send some monero to somebody today and know it won’t be cracked within the year. But if I put on a mask and gloves and try to send a letter in the dead of the night, I know there’s still a chance that I’m caught.

There’s a reason why hackers today choose to use crypto and mixers rather than cash. Same reason why the US criminalized tornado wallet. Turns out, Monero and mixers are incredibly effective.

In the case of buying Protonmail accounts, I don’t think it’s obvious that it changed hands, since again, it just looks like the account user started using Tor, nothing more. The use of Tor is suspicious, but so is any anonymous methods. For example, mailing cash to a email provider is also extremely suspicious, given how much effort one is going through to pay anonymously, and thus it may trigger a cop to immediately start reviewing security camera footage around the mailbox. Any type of anonymity is going to raise eyebrows, but buying accounts from the darknet is imo the safest and most secure method.

But being aware of the tradeoffs is important so thanks for sharing

Fair enough. This is why I mentioned that the darknet method was the most reliable method I found. So far it hasn’t failed me

very cool, I’ll have to look more into it

I’m confused at your point here. First off, there’s very little initial metadata. The seller uses their ip address to make the account, and then you buy the account and start using Tor to access the account. From Protonmail’s perspective, this just looks like somebody made an account and started using it with Tor.

But let’s say there was some usage difference that could be detected. Maybe the seller used the email for Github, and then you started using it for Discord. So what? I think you’re going to have to be more specific about the threat here.

And they already do. Their mail service is more private than the other options. It would help if you outlined what you want

that’s assuming they don’t scan the contents of mail, in which case physical surveillance would include content too.

than other anonymous methods, like trying to find the right Tor exit for Tutanota to let you create an account, or trying to use sms services like smspool to get past the phone number check from Protonmail, etc. These methods only work like 25% of the time, while buying accounts from the darknet has worked for me 100% of the time.

what remote desktop protocol do they use?

what security stuff?

every time I tried using VPN or Tor, they asked for phone number or a second email address. For the second email address, I’ve tried temporary email services but they all got rejected. Any recs?

Ok this is getting far off topic. Monero provides privacy. It’s a lot easier to send money anonymously using Monero than, say, cash or credit. The point that the other commenter made about consumer hardware, is more about decentralization, which some people value and are thus against government-controlled currency like the Federal Reserve. But that’s not why I brought up Monero in the post

the point of the post is about creating accounts anonymously. Try creating a protonmail account using a VPN or Tor, without giving any PII.

You were the one that brought up cash, I was simply explaining that sending Monero is often more private than sending cash

with dragnet surveillance, law enforcement is already investigating everybody. The purpose of buying it on the darknet is that it’s anonymous, so it doesn’t matter if law enforcement investigates it.

harvest now decrypt later applies to cameras too. Install a bunch of security cameras, aggregate all footage, use facial detection, gait detection, predictive algorithms, etc to figure out the motion of all citizens at all times. I would not be surprised if governments were already doing this.

You simply cannot practically “encrypt” physical methods wirh the same amount of entropy that can be used for digital methods. And this is even before quantum-safe encryption.