Ah, yes, the Linux Kernel's #PGP Web of Trust—because nothing screams "cutting-edge technology" like a system built on the tattered remains of #keyserver networks 🤦‍♂️. Who needs simplicity when you can have a Byzantine key repository maintained by a single guy named Konstantin? 🔐🔑
https://blog.kleine-koenig.org/ukl/the-linux-kernels-pgp-web-of-trust.html #LinuxKernel #WebOfTrust #Security #Technology #Humor #HackerNews #ngated

Hello world, this is the #OpenPGP #keyserver service at https://keys.openpgp.org!

This account provides a low-volume channel for updates about the service.

Hello world, this is the #OpenPGP #keyserver service at https://keys.openpgp.org!

This account provides a low-volume channel for updates about the service.

Hello world, this is the #OpenPGP #keyserver service at https://keys.openpgp.org tooting!

This account provides a low-volume channel for updates about the service.

Heutiger Aha-Moment: #PGP-Key-Verteilung über die eigene #Webseite, komplett ohne zentralisierte #Keyserver o.ä. - sehr schön! Gleich eingerichtet. ✅
Macht Ihr auch mit?

https://blog.mister-muffin.de/2025/03/31/til-openpgp-web-key-directory/

#GnuPG #GPG #PKI

Yo #infosec folks: I've *always* been on the fence about publishing my #pgp / #gpg / #gnupg public key, because I don't want spam from bots trawling the public #keyserver. Those of you who've posted your keys, would you say you get more spam or no difference?

Ahora si vemos como subir las Claves GPG para poder compartirla

https://youtu.be/zjVAF9pjMoA

#upload #keyserver #gpg #keys #public #segurada

We are pleased to announce the release of Hockeypuck 2.2.

Hockeypuck is a modern synchronising keyserver that is optimised for ease of deployment, particularly in containerised environments via docker-compose.

Hockeypuck 2.2 is a significant upgrade that includes the following changes:

# Features

• Fully stable sync
• Improved multithreading safety
• Deletion of personal data from hard-revoked keys
• Admin deletion of keys via signed submissions
• Detached revocation certificate support

# Bugfixes

• Missing direct key signature validation
• Missing subkeys with v3 sbinds
• Missing CORS headers
• HTTPS binding errors
• Many cosmetic improvements

# Deprecations

• SKS-keyserver recon compatibility
• UAT image packets
• User deletion and replacement of keys via `/pks/delete` and `/pks/replace` endpoints

More information: https://github.com/hockeypuck/hockeypuck/wiki

#gpg #gnupg #hockeypuck #openpgp #pgp #keyserver #sks

Anyone familiar with writing database queries and want to help #mailvelope #openpgp #keyserver work with #ferretdb instead of non-free #mongodb ?

https://github.com/mailvelope/keyserver/issues/142#issuecomment-2117988302

Background: mailvelope keyserver is the only openpgp keyserver software I found that supports key removals and GDPR-compliant/abuse resistant (the commonly used keys.openpgp.org software hagrid is not supported for outside deployments).

All older key server software don't do email verification and cannot remove keys.

Latest #openpgp #keyserver update: key-server.org is back in good sync with the rest of the network. This brings the total of well-oiled synchronising keyservers up to 21.

@anarchopunk_girl @fla @Mer__edith @signalapp

Also #Signal collects #PhoneNumbers which are hard if not illegal to obtain anonymously depending on one's juristiction and those ain't even #TechnicallyNecessary unlike #Apps that do #E2EE with #OpenPGP on #SMS where it makes sense to offer people the convenience of a #Keyserver offered by the maintainers.

Personally, #Signal has a stench closer to #ANØM / #OperationIronside / #TojanShield than #EncroChat IMHO...
https://en.wikipedia.org/wiki/ANOM

@kusuriya @mail *nodds in agreement*

#Keybase in it's original form as a means to sync and host #Pubkeys and #verify accounts is good, but them selling out and snitching on users [i.e. #DeterrenceDispensed] is inexcuseable.

OFC a privacy & encrypted-only eMail provicer would've to offer a #Keyserver to provide #Pubkeys for the eMail adresses of users...

Ideally something that literally allows automatic pulling like keyserver.mailprovider.example/emailadress@mailprovider.example.pubkey.

Have united all my notes about #GPG ( #PGP ) into 1 #blog , It covers:

• creation
• modification
• #backup
• #publishing
• use
• #signature of #keys that belong to others
• #SSH #authentication #keys
• use of integrated #Yubikey #smartcard
• #notes
• #reference sources
• D’Artagnan story

Hope this will help some and.. In case you spot some imprecision or error, please please, do point it out! :ablobderpy:

https://furayoshi.com/blog/gpg-guide
#security #Linux #keyserver #code #programming #2FA #cyberSecurity #Encryption #GnuPG

## Two Dixie Cups and a piece of string

### Oh my goodness\!

Okay first of all, I use #Matrix and #Jabber - #XMPP w/ #OMEMO, primarily.

I typically don't even regularly give out my email address nowadays, and more and more over the past four years or so, find myself publishing a #Fediverse address for myself too as a contact point.

Most often, if you ask me for my #email address I'll give you my Matrix address.

If someone wants to email me then I figure they can get that from my #PGP fingerprint or #Keyoxide.

If they don't know what a #keyserver is or where any of them are located then I just figure they're to dumb to use email.

Yes. As a technologist, I'm at times, rather arrogant, opinionated, discriminatory, and condescending... But only sometimes. The rest of the time I'm patient, attentive, empathetic, and accommodating.

Basically, if i know you don't know shit I'm a nice guy, yet if you pretend to be an all that jazz hipster know it all, then it's quite likely you'll find that I'm pretty much a full on dikhed. Spelled just like that too.

Beginning in the later eighties I think, and then the nineties they called us #BOFH. That's an acronym for someone who might already have forgotten more than you will ever know. I knew a few old Mainframe engineers with Honeywell and IBM when I was a young programmer - those guys were Gods and could tell you how many wraps of copper to make around a toroid if you had an emergency and needed to make an in the field replacement of your memory - Gods. #SuperFreakyGeeks, having already, back then, forgotten more than you or I will ever know.

They called me #Whizkid, coz I was learning shit that they were never gonna bother with - they're gonna retire soon in Mexico with boats, babes, and beers.

But I digress. I do that.

### Back to secure communications...

When it comes to Signal, I know a lot of you really like it. I have little use for it. It bleeds my DID and farms everyone's contact databases - "bing! Ex stalker bitch girlfriend just joined signal. Say hello!" What the fuck?

Well I guess she's still got me in her contacts lolz. Fuckin' bitch.

### Ummm... Yeah I'll pass.

I actually only use Signal with people who already have my #DID (phone number) anyway.

Recently, a colleague flew a cray cray route to Thailand, via #LAX to #NYC, then #Qatar. Signal works on jetliner's #WiFi too, and isn't dependant on cellular services.

Good choice, but I'm still wondering why his "safety number" changed after he departed #New_York and before arriving in #Thailand - he neither reinstalled nor switched to a new device. But that's another matter.

Sounds a little cloak & dagger fishy to me.

Anyway, I hadn't actually used #Signal in a while, and left it muted for a few months.

To my surprise... #Stories! Yay! Stories!

Wait, what are Stories? You mean like #YouTube or #InstaSPAM? And I'm assuming like they have in #Whaaaasup (never used it, never will)?

Ummm... I just tucked that little nugget of, I guess, good news away, not really knowing even how to process news of the introduction of such a useless fucking feature.

Until now.

Without further adieu, I defer to @how , one of our more prominently distinguished members in the Fediverse community, for his novel, clever, and appropriate recommendation:

https://ps.s10y.eu/@how/109308591992363124

#tallship #FOSS #communications #privacy #shenanigans

⛵

.

Mastodon Konto verifizieren mit GPG

Mittels Keyoxide kann eine dezentrale sichere Online-Identität gebildet werden, die sich beispielsweise zur Verifizierung eines Mastodon Accounts eignet.

#Mastodon #Verifikation #Verifizierung #GPG #Keyserver #Keyoxide #neuhier #Linux

https://gnulinux.ch/mastodon-konto-verifizieren-mit-gpg

#HomeLab question; after figuring out why I couldn't connect to my server the other day I'm looking for a solution. Like a responsible person I've installed my server with #FullDiskEncryption but that means manual intervention after a reboot (namely entering the decryption password).

Automatic updating also means regular reboots, but I don't want to deal with the password. I've heard a #keyserver might be a solution, but I hope there are other solutions available?

@dcent
We are not seeing the other half? Only this post.

1) Sounds good.

2) There's no point talking to a bank about investments and loans if communications are leaky. Imagine communicating re a possible #homeLoan and Google/M$/Blackrock, seeing that an using that info against you.

We need secure comms. Therefore banks should use/store ppl's public encryption keys. They need to act as a #keyserver also, because a) there's not enough good #keyservers, b) also stops ppl knowing where yu #bank.

In #Totalitaria you do not use #keyserver, keyserver usually broken.

Whey using #gnugp what #keyserver to use? #askfedi