> So basically, 1) the attacker embeds a link to the encrypted message, 2) the email client fetches and decrypts it, and then 3) sends plaintext back to the attacker.

What? The attacker embeds secure content inside a link, not a link to the content. It could come from files stored in a public place or emails.

Thanks.

yep, the screenshots in the linked article are QBasic, not QuickBasic - check them out

It's a wiki, and the page above is only the first page of hits. Ace Monster Toys is at http://hackerspaces.org/wiki/Ace_Monster_Toys, and you see a map of spaces near you at http://hackerspaces.org/wiki/California

Thanks. At the time I was looking at it, the page was down and I was navigating the cache without any css/js. :)

What, this Null Space Labs? http://hackerspaces.org/wiki/Null_Space_Labs

If you click the unfortunately named "List of ALL hackerspaces"[1], scroll down and click on "further results"[2] then adjust to show all 500 results[3] and finally search the page you will not find Null Space Labs (but some references to Queensland). That doesn't mean NSL isn't on the site... just that the site fails.

[1] http://hackerspaces.org/wiki/List_of_ALL_hackerspaces

[2] http://hackerspaces.org/wiki/Special:Ask/-5B-5BCategory:Hack...

[3] http://hackerspaces.org/w/index.php?title=Special:Ask&offset...

It's a wiki