Seeing that there is a hack which allows admins to read PMs (which is possible anyway as they are being stored as plaintext in the DB) if to be possible to create a "Secure PMs" Hack (based on RSA)?

I don't see why you want to prevent this.

It would be helpful if the admins needs to verify that they are getting harassing pm's from users.

Cyricx

Well, as admin you have direct access to the files, so the admin can just remove the secure thing again.

this hack would then be useless...

Sure he could remove this, but if encryption/decryption is done on the client side?

The only real way to secure PM's is like securing Emails by using the publickey/hidden key method like PGP.

but this way has to be done by the users themselve, and not by the admin ;)

The only real way to secure PM's is like securing Emails by using the publickey/hidden key method like PGP.


be possible to create a "Secure PMs" Hack (based on RSA)?

;)

My thought was only to integrate the necessary functions into the boards JS, but I fear this would be too slow, even when using modular exponentiation.

oops ;)

wellm if you integrate it into the js or into the php files, it's equal, both things can be edited by other admins ;)

also JS has the disadvantage of has to be enabled on the browser ;)