Since I started using Codeberg, I've realised how centralised everything is around GitHub (which was buyout by Microsoft), ranging from CI support, identity providing (or both in the case of shuttle.rs), packages and third-party support.
It is worrying, considering the recent controversies with Copilot breaking open source licenses and using projects for learning.
The developer world should drive towards projects like @forgejo and @Codeberg that don't depend on private interests that can let you down at any given point.
I use this to provide info on my #OpenPGP public key. IMO, it doesn't make sense to sign commits and let others guess where to fetch the public key from.
Some people don't see the value of using a password manager and keep sharing their streaming service passwords with their friends and relatives in plain text.
This is an attempt to simplify the process of sending encrypted passwords for non-technical users, using local encryption with temporary #PGP keys.
@garritfra very cool idea! And quite needed for folks who can't / don't want to comprehend the concept of password managers.
A question here: Any reason why you picked #OpenPGP and not something like #age? The latter has shorter keys which, IMO, will be more appealing for the users.
@arstechnica yes, password-protected zip files are just an illusion of privacy.
In fact, these researchers were not using them for privacy, but as a way of sending malware samples to each-other without being stopped by the malware scanners.
What I don't understand is why so many banks and financial institutions are so fond of them. They keep sending sensitive information via email on password-protected zip files where the password is your ID or your birthday... 🙄
Proper end-to-end encryption has been around for decades. 🤷♂️
In case it helps someone else: To change the #OpenPGP smartcard PIN on my #YubiKey, gpg --change-pin does NOT work for some reason. Using gpg --card-edit and putting admin and then passwd into the prompt lets me do it though.
#OX (XEP-0373, XEP-0374: #OpenPGP for #XMPP, without security problems of historical XEP-0027) implementation has been merged to #Libervia, thanks to Syndace again, and #NLnet for their funding.
OX doesn't have PFS (https://en.wikipedia.org/wiki/Forward_secrecy) but that means that new devices can access archives, which may be desirable. Also, it can encrypt arbitrary elements.