It appears legit, The original forums are still, amazingly, functional [the ones that the alleged owner of SR controlled as part of SR 1.0 -- I guess the bill hasnt come due for the hosting yet?]
An admin on there, or super moderator whatever the title is -- someone who can add/remove subforums, close registrations, etc posted a GPG/PGP signed message linking to the new SR forums [since the 1.0 forums presumably have nobody with SSH access to the webserver and the like.. and only have moderators .. so it will die when the forum software crashes or the OS.. or the webhost shuts it down when the bill comes due which prompts a need for new webforums despite the existing ones still functioning, for now]
From a series of GPG/PGP signed messages on SR 2.0 forum, it is 100% certain that the SR 2.0 was created by SR 1.0 staffpersons, or at least endorsed as official -- anyone can use GPG/PGP to verify that indeed the GPG/PGP keys were used by SR 1.0 staff, respected staff, to endorse the use of SR 2.0.
I have took the time to verify the messages to keys that were posted [PGP Public key blocks] prior to the bust [to make sure they didn't edit old posts and alter the timestamps etc] and can confirm that SR 2.0 as indicated in stickies on both the 1.0 and 2.0 forums is an official creation.
Obviously, the person posting as "Dread Pirate Roberts" is a different person but at least one major respected member of SR 1.0's staff is involved in SR 2.0 and endorses it and is staff there.
Further, public key blocks of staff were posted on other dark net forums and also many respected vendors of SR 1.0 have given endorsements -- some signed with their public GPG keys to ensure its not law enforcement using their forum accounts -- of the new SR 2.0.
I've yet to see any postings on any SR forums that indicate concrete proof that the SR 2.0 site is a honeypot or a fraud [note I am just a spectator -- I have no intimate knowledge of anything not viewable on the public forums].
Buying/selling is turned off for now, they are allowing listings only. Right now its sort of in a rolling start beta test type deal. They appeared to have re-coded the entire back end of the site -- even though it looks identical on the front end - layout and logo etc. All features are expected to be enabled by tomorrow [Nov 8]
One major new feature that I've seen, is the optional feature to require copying a PGP encoded message that uses your key, decrypting it by entering your passphrase for your key, and pasting the decrypted string -- in ADDITION to your username and password. It automatically logs you out after inactivity which is NOT optional.
Screenshot of the two-factor PGP / GPG authenticator prompt: [Safe for work]:
http://i.imgur.com/pxqnSpX.png
