• brian@lemmy.ca
    link
    fedilink
    arrow-up
    6
    arrow-down
    1
    ·
    4 months ago

    So I recognize that having the files securely encrypted is a valuable thing, and that having privacy for sharing is also important. But how do you actually share this without creating a vulnerable point?

    Say I wanted to leak some file as a whistleblower, I’d still need to get the link/password/etc shared to whomever I’m leaking to, right? Sorta defeats the purpose when you need some other source of contact, right?

    • dactylotheca@suppo.fi
      link
      fedilink
      English
      arrow-up
      12
      arrow-down
      1
      ·
      4 months ago

      I don’t quite understand your question. Yes, to share something with someone else, that someone needs to know what you want to share with them and where to get it from – I’m not sure what you envision the alternative is

      • brian@lemmy.ca
        link
        fedilink
        arrow-up
        2
        arrow-down
        1
        ·
        4 months ago

        I guess it’s more asking what the alternatives could be. I don’t have the answer, and truthfully don’t have much of an idea what is out there to solve that problem.

        Is there a system that can get information to someone, maintaining anonymity for the sender the whole way through? Like having an open drop box where you’d be able to put whatever documents you want into it.

    • akwd169@sh.itjust.works
      link
      fedilink
      arrow-up
      6
      ·
      4 months ago

      Send an email encrypted with PGP to your intended recipient (using their public key of course)

      Anonymous email is possible and most places accepting anonymous tips/whistleblowing have an email address for that specifically

      Alternatively I’m sure these same places can make an anonymous IM account like simpleX chat for example

      There’s plenty of ways really…

    • RmDebArc_5@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      1
      ·
      4 months ago

      Services like this could be useful if you already have a connection through something encrypted (encrypted mail, matrix, …) but the files are too large for sending without this.

    • WhatAmLemmy@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      ·
      4 months ago

      It means that neither party who interacts with the file if known, as they must access the site via torr.

      Very useful for journalists to receive information from whistleblowers, etc.