arstechnica, 1 year ago to random

Microsoft is scanning the inside of password-protected zip files for malware

If you think a password prevents scanning in the cloud, think again.

https://arstechnica.com/information-technology/2023/05/microsoft-is-scanning-the-inside-of-password-protected-zip-files-for-malware/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social

blake, 1 year ago to random

In case it helps someone else: To change the #OpenPGP smartcard PIN on my #YubiKey, gpg --change-pin does NOT work for some reason. Using gpg --card-edit and putting admin and then passwd into the prompt lets me do it though.

#gpg #gnupg

strypey, 1 year ago to random

"SSH key-based authentication is tried-and-true, but it lacks a true public key infrastructure for key certification, revocation, and expiration. #Monkeysphere is a framework that uses the OpenPGP web of trust for these PKI functions."

@riseup

https://riseuplabs.org/en/projects

Sounds like a cool project, is the monkey still alive? The homepage linked on that page is dead, and the only code I could find doesn't look like it's been touched in a while.

https://0xacab.org/monkeysphere

#SSH #OpenPGP #WebOfTrust

topher, 1 year ago to infosec

Those of you who use PGP for email, do you typically generate a sign and an encrypt RSA subkey - and use those? Or what's the best practice?

Wanting to publish my PGP public key on my profile and website and start rocking that far more aggressively, but don't want to do stuff less-than-ideal and then have to change and re-publish keys again later and etc.

#infosec #encryption #privacy #email #pgp #openpgp #security

nitrokey, 1 year ago to opensource

Big news today! Firmware 1.4.0 for our #Nitrokey3 models finally comes out from its testing phase. It comes with #OpenPGP Card and #OTP. And there’s more: Nitrokey 3C NFC availability is growing fast and our team is already working on new features and usability improvements. Take a read here! 👇
#opensource #security #privacy
https://www.nitrokey.com/news/2023/milestone-nitrokey-3-achieved-openpgp-card-one-time-passwords-and-usb-c-availability

nwalfield, 1 year ago to random

RPM uses OpenPGP to protect software updates. In the fall of 2022, it switched from using its own internal OpenPGP implementation to Sequoia. Last week, Fedora 38 was released with a version of RPM that uses Sequoia. I've written about the 1.5 year journey in a blog post.

#pgp #openpgp #fedora #redhat

https://sequoia-pgp.org/blog/2023/04/27/rpm-sequoia/

hko, 1 year ago to random

I've just released an alpha.1 version of OpenPGP CA 0.13:
https://crates.io/crates/openpgp-ca/0.13.0-alpha.1

This release offers a preview of the new "Split" mode.

For details about split mode OpenPGP CA, see https://gitlab.com/openpgp-ca/openpgp-ca-web/-/blob/split/content/doc/split-mode.md (some details may change between now and the first stable release in the 0.13 series)

This work was supported by NLnet @NGIZero, thank you!

#OpenPGP #OpenPgpCA

Goffi, 1 year ago to random French

#OX (XEP-0373, XEP-0374: #OpenPGP for #XMPP, without security problems of historical XEP-0027) implementation has been merged to #Libervia, thanks to Syndace again, and #NLnet for their funding.

OX doesn't have PFS (https://en.wikipedia.org/wiki/Forward_secrecy) but that means that new devices can access archives, which may be desirable. Also, it can encrypt arbitrary elements.

It is also a brick for incoming feature such as #pubsub #e2e #encryption .

stay tuned