Notices by Joshua Judson Rosen (rozzin) tagged gnupg
-
Joshua Judson Rosen (rozzin)'s status on Monday, 01-Jul-2019 15:50:40 EDT Joshua Judson Rosen ALSO, I'm reminded that there was this other #HKP #keyserver released a few years ago, compatible w/ #SKS but written in #Golang, which might relieve some of "zomg unmaintainable!" problems with the SKS servers: https://hockeypuck.github.io/ !crypto #PGP #GnuPG -
Joshua Judson Rosen (rozzin)'s status on Sunday, 21-May-2017 15:16:27 EDT Joshua Judson Rosen Wow: !TIL that #keybase was founded on a fundamental misunderstanding about how the #PGP / #GnuPG #weboftrust works: http://web.archive.org/web/20141027135352/https://keybase.io/docs/tracking https://lists.gnupg.org/pipermail/gnupg-users/2014-December/051939.html https://www.linux.com/blog/pgp-web-trust-delegated-trust-and-keyservers -
Joshua Judson Rosen (rozzin)'s status on Thursday, 24-Mar-2016 18:30:48 EDT Joshua Judson Rosen As the #GnuPG manual says, bundling #trust into #keysigning "is generally only useful in distinct communities or groups": https://www.gnupg.org/documentation/manuals/gnupg/OpenPGP-Key-Management.html -
Joshua Judson Rosen (rozzin)'s status on Thursday, 24-Mar-2016 14:53:28 EDT Joshua Judson Rosen @windigo, I guess that's why ID-certification and trust are two separate things in #PGP, "sign" and "tsign" are separate commands in #GnuPG, and nobody uses "tsign" ;) -
Joshua Judson Rosen (rozzin)'s status on Sunday, 09-Nov-2014 13:18:36 EST Joshua Judson Rosen Genkin, Shamir, & Tromer explain how to build a #sonic-screwdriver to open nearby #GnuPG keyrings: http://www.cs.tau.ac.il/~tromer/acoustic/ !security -
Joshua Judson Rosen (rozzin)'s status on Sunday, 09-Nov-2014 13:11:51 EST Joshua Judson Rosen #Reading the Genkin/Shamir/Tromer paper on accoustic extraction of RSA keys from #GnuPG < 1.4.16: http://www.cs.tau.ac.il/~tromer/acoustic/ !security -
Joshua Judson Rosen (rozzin)'s status on Sunday, 09-Nov-2014 12:41:34 EST Joshua Judson Rosen I'm a little conservative WRT major revs of !security software: trying to decide now, is it finally time to upgrade from #GnuPG 1.4 to 2.0? -
Joshua Judson Rosen (rozzin)'s status on Sunday, 09-Nov-2014 12:37:35 EST Joshua Judson Rosen #GnuPG 2.1.0 feature-overview doc says, most parts of the system no longer know about secring storage at all: https://www.gnupg.org/faq/whats-new-in-2.1.html#nosecring -
benfell (benfell)'s status on Thursday, 06-Nov-2014 09:58:35 EST benfell #GnuPG 2.1.0 is out: secring.gpg is no longer used, but the announcement doesn't say how secret keys are now maintained. !security