why username and password? isn't pgp enough? : OpSec | Torhoo darknet markets

I guess it is a barrier for new buyers and many vendors. People don't understand the PGP and won't use the market = less profit.

I agree with you but some market has the pgp-login like drughub and darkmatter.
I will also implement it on omega.

Thank you,
Q

It's about time somebody mentions it. I wouldn't mind protecting my account exclusively through my private key. Your safety is only as strong as the weakest element in the chain. I know for sure it's not PGP.

Old habits die hard

DrugHub kind of does that. I don't mind that login process.

This why I love vending on Dark Matter. They have a private mirror for vendors that only utilizes your PGP to login. It is amazing. It skips all the captchas, login & everything (which could bring up OpSec issues due to not having that extra barrier to protect you, but even 2FA can be hijacked by spoofing, mostly the 6 digit pins and stuff on phones, not really your 4096 bit RSA Key Pair. Add auto-withdrawals upon finalization to that and you have a very happy vendor haha not to mention that they lower the fees as you gain experience as as a vendor... anyways why am I rambling about this in OpSec? lol... but yeah I agree on some level. PGP verification should suffice instead of needing to continuously input your login information redundantly. Totally get that. The harder a market is to get into, the less people will continuously try to overcome the learning curves.

This should really be standard. Makes it easier for people who use pgp anyways, and also makes sure that everybody on the market has a pgp key.
However, considering there are still markets that accept bitcoin, I doubt we'll see it implemented any time soon.

Extra protection always better

Drug Hub lets you sign in with just PGP only, but of course you do still have to register a username.

The PGP key is cool and easy to login and identify people, but User+Pass+PGP 2FA will always be better OpSec for Vendor's IMO