-
Recent reports on the
#OpenPGP#keyserver certificate poisoning attacks have focused on the SKS keyserver implemented in OCaml, which is basically a replicated, censor-resistant, append-only database for unverified key material. But what about#gnupg's role in the attack? /threadPrikaži ovu nit -
You know
#GnuPG but always found it too complicated to use? Come and see how the recent versions make it easier to defend yourself against mass surveillance. https://twitter.com/CryptoPartyLDN/status/1074361969623425027 … -
For some weeks in August, the BSI withdrew approval of
#gnupg for sensitive docs, and I made a FOI request to find out why. Today I got all documents related to the case. We finally know what happened (thread). https://fragdenstaat.de/anfrage/zulassung-von-gnupg-und-verwandter-software-fur-vertrauliche-dokumente-vs-nfd/ …Prikaži ovu nit -
For some weeks in August, the BSI withdrew approval of
#gnupg for sensitive docs, and we still don't know why. But I made a FOI request and it was partially granted: All but one document (by cryptovision) will be released in a couple of weeks. https://fragdenstaat.de/anfrage/zulassung-von-gnupg-und-verwandter-software-fur-vertrauliche-dokumente-vs-nfd/ …https://twitter.com/heiseonline/status/1158758662254530561 …Prikaži ovu nit -
Newly published attack technique against SHA-1 signatures now 10x more efficient and for more scenarios too. (
#crypto#infosec#cybersecurity#openssl#openssh#gnupg#pgp) https://arstechnica.com/information-technology/2020/01/pgp-keys-software-security-and-much-more-threatened-by-new-sha1-exploit/ … -
Osobe Vidi sve
-
#GPG left an unfixed#vulnerability for a decade that's now been#hacked. Its#WebofTrust is compromised. Thankfully#blockchain has a strong alternative.
https://www.codenotary.io/gpg-certificates-maybe-permanent ……/
#GnuPG#PGP#OpenPGP#Keyserver#cybersecurity#devtools#devops#devsecops#CISO#CIO#CTOpic.twitter.com/gZsMGH3GpA
-
#GnuPG 2.2.12 has been released today, just in time for the next@CryptoPartyLDN where the new features of the 2.2 branch will be discussed.https://twitter.com/gnupg/status/1073598619448733697 … -
I just published a guide on how to fix this if
@GnuPG automatically fetched a poisoned cert (ie Tor Browser key) from this latest wave of cert flooding attacks (and I describe how to update#gnupg to prevent this issue in the future) https://tech.michaelaltfield.net/2019/07/14/mitigating-poisoned-pgp-certificates/ … -
I've updated my
#GnuPG key expire date. More info at http://ax25.org https://ax25.org/my-gnupg-key/#nitrokey@nitrokey -
Want to know how to encrypt your emails or your instant messaging conversations? Join us at the next Cryptoparty London where I'll host a workshop on encrypted communications.
#OpenPGP#GnuPG#Signalhttps://twitter.com/CryptoPartyLDN/status/1120725852696846343 …
-
High-risk users should STOP using the
#GnuPG keyserver network NOW! Open gpg.conf in a text editor. Ensure there is no line starting with keyserver. If there is, remove it. Open dirmngr.conf in a text editor. Add the line keyserver hkps://keys.openpgp.org to the end of it.Prikaži ovu nit -
Is there an easier to use option than the outdated
#GPG for proving#trust? This comparison of it to a#blockchain-based alternative says yes. https://www.codenotary.io/the-cumbersome-nature-of-gpg-vs-an-easy-to-use-blockchain-alternative/ …#devops#developer#devtools#devsecops#cybersecurity#codesigning#CTO#CISO#CIO#CEO#GnuPG#PGP#OpenPGPpic.twitter.com/p5KS2EopAp
-
Moritz
@golem reported about my FOI request to@BSI_Bund on the use of#GnuPG for sensitive docs, and has more details
(German only). His investigation uncovered another related document, a "release recommendation" for #GnuPG, that I also requested now. https://fragdenstaat.de/anfrage/freigabeempfehlung-fur-gpg4-vs-nfd/ …https://twitter.com/golem/status/1210470460221280257 …Prikaži ovu nit -
Did search for signature verification function in
#GnuPG. verify_signatures() in verify.c performs no cryptography and apparently calls no cryptographic function, leaving me stupefied. Solution: release_list() does the signature verification! Who comes up with such a design‽ -
I still can't believe
#gnupg isn't more easily integrated with everything. -
-
Passpie - Multiplatform Command-Line Password Manager http://j.mp/2Yj6JeQ
#CommandLine#Credentials#Database#GnuPG#Linux#Macpic.twitter.com/a9GFB1D3hy
-
#PGP keys, software security, and much more threatened by new#SHA1#exploit |#gnupg#hash#SHA1collisionhttps://arstechnica.com/information-technology/2020/01/pgp-keys-software-security-and-much-more-threatened-by-new-sha1-exploit/ … -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
Come for free digital privacy workshops, fascinating lightning talks, & festive cheer!
Schedule is live NOW. Pick your workshop!
