Hiker, 7 months ago to random

Jetzt mal eine wirklich sehr nerdige #Frage.
Für diejenigen, die E-Mail-Verschlüsselung mit #GnuPG / #OpenPGP verwenden:
Lässt ihr die Betreffzeile offen oder wird die bei euch auch verschlüsselt?

kkarhan, 8 months ago to random German

Whilst I work on #OS1337's #MinimumViableProduct aka. #CORE / #FloppyEdition, I'm thinking about the other, more featureful versions.
https://github.com/OS-1337/OS1337/tree/main/docu/ideas

Besides a #BootFloppy to launch a #CDROM version there are a lot of tools I'd love to support:

1. a Package Manager so people can just install & update shit easily:
   https://github.com/OS-1337/spm

2. Good default Configs for a System like NTP & DNS Servers unless those are being offered per DHCP.
   https://github.com/OS-1337/conf.d

mattblaze, 8 months ago to random

Reminder about Mastodon "private" messages. Aside from not being end-end-encrypted (and so visible to instance administrators), they CC anyone @-mentioned ANYWHERE in the body of the message (not just those listed at the start).

They are now called "private mentions" rather than "private messages", but if you don't fully understand the semantics, this behavior may be unexpected and/or cause unpleasant side effects.

amszmidt, 8 months ago to random

Do people still use #GnuPG?

lued, 9 months ago to linux

EN:
Unfortunately, I can't find a good entry point for this topic:
How do you implement server-side mail encryption and decryption for s/mime? I use Postfix+Cyrus.

DE:
Ich finde für das Thema leider keinen guten Einstieg:
Wie realisiert ihr serverseitige Mailver- und entschlüsselung für s/mime? Ich nutze Postfix+Cyrus.

#linux #foss #cyrus #postfix #mailing #encryption #decryption #smime

efi, 9 months ago to random

all of the fedidrama with blocklists comes down to the idea that instances are needed for proxying traffic, but this is only true because identities are not decentralized, which is a fundamental mistake of the mastodon era of software
this is not really up to debate
without decentralized identity we will have this problem of someone else deciding what data we have access to, so if you don't like that, you have to push for it, the same way mastodon pushed for the democratization of this centralized model away from twitter, and even before mastodon others did so in a less accessible way
give power to the users by making it accessible, not by pretending that everyone can learn to use docker

orhun, 9 months ago to rust

Just released the new version of gpg-tui! 🥳

🦀 A terminal user interface for GnuPG - written in Rust

⭐ GitHub: https://github.com/orhun/gpg-tui

🔐 Changelog: https://github.com/orhun/gpg-tui/blob/master/CHANGELOG.md

#rustlang #gnupg #terminal #tui #linux

video/mp4

kaiengert, 9 months ago to random

Hello community of #Thunderbird #OpenPGP users. I'd like to know if some of you are still stuck at Thunderbird version 68 and the old #Enigmail Add-on. Is there any missing functionality in Thunderbird 115 that is still preventing you from migrating? #PGP #GPG #GnuPG @thunderbird

hako, 9 months ago to random

https://old.reddit.com/r/linuxquestions/comments/jqnkoi/gpgagent_with_usb_smartcard_agent_refused/gbtwbes/

Match host * exec "gpg-connect-agent UPDATESTARTUPTTY /bye"

#gnupg #gpg-agent #ssh

nobodyinperson, 10 months ago to manjaro

Damn, it took me less than five hours to reproduce my :manjaro: #Manjaro setup in :nixos: #NixOS from zero 💪:

• getting #GnuPG working
• homedir encryption with #eCryptfs
• all software I need
• even managed to package 3 custom things not in nixpkgs (passrofi, my #OpenTimeStamps client fork, bemoji)

Nix Packaging is indeed 𝘀𝗼 much easier than #ArchLinux, #Debian or #RPM packaging!

This is the result: https://gitlab.com/nobodyinperson/nixconfig

leak, 10 months ago to random

Cryptography is a tool for turning a whole swathe of problems into key management problems. Key management problems are way harder than (virtually all) cryptographers think.

kuketzblog, 11 months ago to Signal German

Tipp Nr.5: Verwende keine unsicheren oder unverschlüsselten E-Mails für den Austausch sensibler Informationen. Nutze stattdessen sichere Kommunikationskanäle wie verschlüsselte E-Mails (bspw. GPG/OpenPGP) oder Messaging-Apps wie Signal oder Threema. Meide proprietäre Software/Apps, denen es an Transparenz mangelt. Die Verschlüsselung ist schlichtweg nicht überprüfbar - Backdoors bzw. Abhörhintertürchen inklusive.

#secprivacy2023 #gnupg #encryption #signal #threema #messenger

netzpolitik_feed, 11 months ago to random German

Schon bald sollen alle EU-Bürger:innen über eine digitale Brieftasche verfügen, mit der sie sich on- wie offline ausweisen können. Ein Konsultationsprozess des Bundesinnenministeriums zeigt nun, welche Interessen die Wirtschaft dabei verfolgt. Und wie diese im Widerspruch zu Datenschutz und Privatsphäre stehen.

https://netzpolitik.org/2023/eidas-konsultation-wirtschaft-will-an-die-wallets/

fsf, 11 months ago to random

GNU Spotlight with Amin Bandali: Twelve new GNU releases in the last month, including #GCC, #GnuPG, #R, and more. Full details: https://u.fsf.org/400 Big thanks to @bandali0 @bandali, all the devs, and other contributors!

ablackcatstail, 11 months ago to random

Cryptography came to my rescue today. Thank you #GNUPG! When I had suspicions that a coworker wanted to get me fired I signed a document with my private key. When she summarily accused me of an alteration she made, #gpg revealed that she made the alteration and not me. The infosec officer and HR escorted her out. #Buhbye. I love being underestimated.

tarnkappeinfo, 11 months ago to Podcast German

📬 GnuPG-Verschlüsselung: Fragen für den Podcast mit Werner Koch einreichen
#Intern #Interviews #Podcast #Enigmail #esimme #FreeSoftwareFoundationEurope #gnupg #Thunderbird #WernerKoch https://tarnkappe.info/podcast/gnupg-verschluesselung-fragen-fuer-den-podcast-mit-werner-koch-einreichen-276435.html

marcel, 11 months ago to random German

Ihr entschuldigt mich kurz? Ich gehe mich mal kurz erbrechen... #40MillionenEuroFuerDieTonne

koko, 11 months ago to random

there's two ends to the "don't touch my UX, it's perfect the way it is now" spectrum: websites that get redesigned every 2 years to appease shareholders, and GIMP

FediFollows, 11 months ago to random

End-to-end Encryption / #E2EE picks of the day:

(all these are FOSS & E2EE)

➡️ @cryptpad - Online collaborative office suite

➡️ @briar - P2P messaging for activists, journalists etc

➡️ @delta - Encrypted chat system, piggybacks existing email accounts

➡️ @Tutanota - Independent email provider, supports E2EE wherever possible

➡️ @prav - XMPP app & service, developed by co-op in India

➡️ @gajim - XMPP app for Linux, Mac, Win

➡️ @Monal - XMPP app for iOS & Mac

➡️ @kaidan - XMPP app for KDE

thunderbird, 11 months ago to android

Thunderbird for Android gets one step closer, as K-9 Mail integrates Thunderbird's Autoconfiguration feature for new accounts.

Read info on that, all the other important developments, and some awesome community contributions in the new progress report:
https://blog.thunderbird.net/2023/06/thunderbird-for-android-k-9-mail-may-2023-progress-report/

#Android #Email #OpenSource #Thunderbird

blake, 1 year ago to random

In case it helps someone else: To change the #OpenPGP smartcard PIN on my #YubiKey, gpg --change-pin does NOT work for some reason. Using gpg --card-edit and putting admin and then passwd into the prompt lets me do it though.

#gpg #gnupg

phryk, 2 years ago to random

After thinking about it a bunch, I have decided that I'll refactor my cryptographic deadhand to use python-gnupg until the sequoia-sop python bindings are released.

The official #GPGME bindings are just too damn broken to be of any real use – and I think that says a lot.

Honestly, I'm not at all sure how people can release something like that as "production grade" (for security-critical tooling, no less) and not feel deeply ashamed.