Использование #OMEMO в тех же #XMPP клиентах опирается на Perfect forward secrecy. Чем выгодно отличается от задействование #GnuPG \ #GPG для сквозного шифрования в чатах.

Потому что при Perfect forward secrecy #PFS ключи шифрования не хранятся на устройстве, а эфемерны — постоянно меняются.

Изъятие смартфона или компьютера не дают возможности расшифровать когда-то в прошлом перехваченные сообщения. Например те, что хранятся на xmpp-сервере для синхронизации между несколькими клиентскими устройствами.

Это и есть то самое Liberty ради Safety — противовесом к «freedom» техногигантов с монополистами в сфере различных платформ доставки контента. И попыток лепить из пользователей товар для рекламодателей, в обмен на предоставление людям бесплатных сервисов.

using #age was so ridiculously fast and easy compared with #gpg that for a moment I was confused: SURELY I must be doing something wrong.

In other tangentially #homelab related news, my #email address, me (at) k3can dot us now supports WKD, if a bit haphazardly.

Dringend nötig für die ganzen Telegram- und Insta-Fans in #Bremen

IT-Sicherheit für #Aktivisti: Eine umfassende Einführung

Samstag, 01.03. 12:00-18:30, Infoladen Bremen

https://fomobremen.info/events/fffd9f3e-e864-4e5a-b7dc-d5487eed992a

I removed the Gmail app from my phone (to de-Google a little bit), and the migration was very smooth. The FOSS #K9 Mail client works very well, including Gmail accounts with secure authentication via OAuth 2.0, and it supports signing and end-to-end encryption of emails using #GPG keys from smart cards via NFC.
This works also in proprietary hardware-encrypted Samsung Knox secure folder.

To those still concerned with #Proton #ProtonMail: I've been trying out Lacre (https://lacre.io), which encrypts incoming #email with your #GPG key, on #Disroot. So far it has worked fairly well! If you have an account with them, see https://disroot.org/en/blog/disnews-24.11 for enrollment, though the admin had a backlog when I requested it... And if you don't, consider trying it out! (Custom domains are available: https://disroot.org/en/perks, which I have for my main email right now.)

#gpg is really annoying and hard to understand...

@jbz what I'd like to know is if I can run #ArcaOS in a VM or get a container version. I tried installing #eComStation from CD's in #VirtualBox, based on someone's video, but utterly failed.

All I really want to do is run an old version of #PGP so I can extract my keys and use them as the basis for new #GPG keys. Apparently GPG's backward compatibility only goes so far

#TIL
Man kann den #passwortmanager #pass von https://www.passwordstore.org/ tatsächlich in knapp einer Stunde auch auf Windows zum Laufen bekommen (KAF = kids acceptance factor). Man braucht nur noch #gpg und #git und dann kann es auch schon losgehen:

https://github.com/mbos/Pass4Win#readme + https://www.gpg4win.de/download-de.html

Das Kind ist total happy, dass es die Passworte nun nicht mehr nur auf dem #iphone #ios hat Das andere hat sich für die "Passwörter" #app auf #ios entschieden. Mal sehen wie lange noch

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Good afternoon, folks! Just a quick reminder: PGP isn't dead. Sign with pride!

Signed with my GPG key: 1BBD C23D 1853 255D 6415 D2EC 814E DF85 1AAB 370E

#OpenPGP #GPG #Cybersecurity #Tech #DigitalIdentity #SignYourCode
-----BEGIN PGP SIGNATURE-----

iHUEARYIAB0WIQTHaQ+iFRwfaXx+TxhjUbpCCVDiNAUCZ7cd5gAKCRBjUbpCCVDi
NOZSAPoDPFoZXKuxya98iY6nAV6hzgOghpqF/OtOVSW4qtEdMQEA3x/jqaD4R9vo
qi89wA4Hsd4KeqwTSQxKDECesI+W8QU=
=3gty
-----END PGP SIGNATURE-----

Secure storage of shell secrets such as API keys

Computer professionals all know that secrets like API keys and passwords for services must be kept safe, but it isn't always clear how to do so in a way that isn't overly cumbersome. In this post, I am going to go through how I achieve this on macOS using GnuPG. I'm using GnuPG because I use both macOS and Linux on a regular basis

https://dustinrue.com/2025/02/secure-storage-of-shell-secrets-such-as-api-keys/

Is there anything finer than a set of #GPG-related Jira tickets first thing slightly before the coffee has had a chance to work?

Set up NixOS in WSL2, with a custom Linux Kernal, allowing USB passthrough for my YubiKey:

https://github.com/JHilmarch/nixos-config/tree/main

Thanks @LGUG2Z and @jakobankarhem for the introduction to the Nix world!

KIBA lädt ein zum Antifa Tresen!
Nach dem Vortrag "E-Mail Verschlüsselung mit PGP - Dance like nobody's watching, encrypt like everybode is" habt ihr wie immer die Möglichkeit euch bei Spezi, Mate oder Bier auszutauschen und zu vernetzten.
Los geht's am 21.02. um 20 Uhr im Balthasar (Balthasargässchen 1).
Wir freuen uns auf euch!

How do folks deal with GitHub and GPG keys? #github #security #gpg #pgp

Gracias a un mail con #GPG volví a configurar el #openGPG en #Thunderbird