Original post on graz.social

If you're using #gnupg with a keyserver for "gpg --refresh-keys" and you're running into the bug of getting aborted with "No data", this script is a good workaround for updating your keys of a single email domain using a (organization) key server […]

Original post on burningboard.net

I did submit 3 new ports for inclusion in FreeBSD 🙂 :freebsd:

Let's see how this goes ..

openpgp-card-tools: bugs.freebsd.org/bugzilla/show_bug.cgi

openpgp-card-tools-git: bugs.freebsd.org/bugzilla/show_bug.cgi

openpgp-card-ssh-agent […]

Користування SMTP від провайдера DeltaChat в Thunderbird Сабж такий, що я довго не можу знайти заміни Gmail: то потрібен номер телефону, то інша скринька, то апрув. Мені це набридло і я згадав про безкоштовні сервери SMTP від DeltaChat. Чим вони зручні - що видають "одноразові" хешовані адреси email, які л...

Користування SMTP від провайдера DeltaChat в Thunderbird

#deltachat #thunderbird #email #smtp #openpgp #autocrypt

Original post on mastodon.online

I don't know how to share well a profile on Fediverse, with profile card, like it is happens with some websites with public profile pages, so all I got able to cook up is making page/post like this: legends.house/private-messages-better-...
And yes, that my new profile is […]

Original post on mastodon.social

Just n' Reminder

E-Mails von mir tragen ein #Openppgp Zertifikat mit sich.
(Signiert, wenn ich den Ksy des anderen nicht habe)

Den PGP-Key könnt ihr auf https://njbraun.de checken.

Ich frage euch weder nach Kreditkartendaten, Passwörter o.ä.

Mittlerweile solltet ihr [@matrix als first Choice […]

RE: https://mstdn.feddit.social/@admin/116114875259851173

可以折腾这个了：
【为什么端到端加密的 PGP 邮件没有被广泛使用？】https://www.v2ex.com/t/1192939

#openpgp #thunderbird

Original post on mastodon.social

I have found interesting the interview of Linux Inlaws to the main founder/contributor to #GnuPG:
https://linuxinlaws.eu LI_S02E22_OpenPGG
Source: archive.org/download/LI_S02E22_OpenP...
Imo GPG is still an interesting tool to use to encrypt particular files […]

I have just configured the OpenPGP Web Key Directory (WKD, RFC 7929) for my domain. #OpenPGP #email #encryption #WKD

So, ich habe mich mit #thunderbird und der #openpgp -Verschlüsselung. Jetzt könnt ihr mir verschlüsselte Mails schicken.

Ab sofort die neue Anmache:

"Willst du mir deinen öffentlichen Schlüssel schicken?"

Original post on fulda.social

So we had a problem on the mirrors for #debian #bookworm - appears the wrong stable #openpgp key got used to sign it. The one from #trixie was in use.

The "only" implication here is people who pin their debian sources to specific keys, their #apt will complain. That's annoying, which is why we […]

Practical Collision Attack Against Long Key IDs in PGP In response to the GPG.Fail attacks, a Hacker News user made this claim about the 64-bit “Long Key IDs” used by OpenPGP and GnuPG, while responding to an answer I gave to someone else’s question: OK, to be clear, I am specifically contending that a key fingerprint does not include collisions. My proof is empirical, that no […]

Thunderbird 146 Rilasciato con Interfaccia Grafica Semplificata per i Keyserver OpenPGP Thunderbird 146 e la nuova interfaccia grafica per configurare i keyserver OpenPGP. Più semplice la gestione delle chiavi per email sicure e crittografate.

Thunderbird 146 è arrivato con un'importante novità: una nuova interfaccia grafica per configurare i keyserver OpenPGP. Trovare e gestire le chiavi pubbliche non sarà più un incubo. Metti al sicuro le tue comunicazioni con maggiore facilità!
#Thunderbird #OpenPGP #Crittografia #EmailSicura #Privacy

Keyserver Updates and Roadmap, December 2025 An occasional blog about OpenPGP keyservers and related issues

#openpgp
＞Keyserver Updates and Roadmap, December 2025 | blog.pgpkeys.eu https://blog.pgpkeys.eu/keyserver-roadmap-2025-12.html

#openpgp
＞Keyserver Updates and Roadmap, December 2025 | blog.pgpkeys.eu blog.pgpkeys.eu/keyserver-r...

Original post on social.tchncs.de

#OpenPGP-Tipp: Wenn man mit Organisationen/Behörden verschlüsselt kommunizieren will, kann das aktuelle #Thunderbird leider keine Empfänger mehr anschreiben, die nicht auf dem Key vermerkt sind.

Größere Organisationen nutzen aber üblicherweise einen Domänen-Key.

Wie man das in Thunderbird […]

Original post on hub.tschlotfeldt.de

@Moritz Das Konzept #Bitwarden finde ich recht interessant und mit #Vaultwarden exisitert eine coole Open-Source-Variante. Aber die sehr eingeschränkte Client-Seite schreckt mich dort ab.

Sehr schön finde ich auch die Lösung von Pass. Einträge als Dateien, Verschlüsselung per #OpenPGP […]

#OpenSSL, #OpenPGP oder #libcurl – ein Protokoll zur sicheren Datenübertragung, ein Verschlüsselungsstandard, eine Programmbibliothek – offene digitale Standards wie diese sind bedroht, warnen die Studienautoren, zum einen von Big-Tech-Konzernen, zum anderen von autoritären politischen Regimen. 👇

Original post on chaos.social

@juanro49 please note that we use #OpenPGP and not GnuPG/GPG. See en.wikipedia.org/wiki/Pretty_Good_Privacy for more details.

While exporting private keys is supported, importing private keys is not supported because our security audits don't cover all kinds of key material, but […]

Original post on tenforward.social

Aaaaaand I've done the manual upgrade from tails 6.x to 7.1 :D A round of applause for the #tails @tails team (which, as I understand it, has merged with the @torproject team #tor). The walk-through steps on the website are straightforward (it feels like a technical writer actually spent some […]

Original post on chaos.social

@moehrenfeld with all due respect and recognition that pgp has a troubled history, pgp twenty years ago and #openpgp now are different things. See for example https://chaos.social/@delta/114590267055497123 or
for a more thorough security talk including discussing metadata […]

Post-Quantum Cryptography in OpenPGP This document defines a post-quantum public-key algorithm extension for the OpenPGP protocol. Given the generally assumed threat of a cryptographically relevant quantum computer, this extension provides a basis for long-term secure OpenPGP signatures and ciphertexts. Specifically, it defines composite public-key encryption based on ML- KEM (formerly CRYSTALS-Kyber), composite public-key signatures based on ML-DSA (formerly CRYSTALS-Dilithium), both in combination with elliptic curve cryptography, and SLH-DSA (formerly SPHINCS+) as a standalone public key signature scheme.

We might get post quantum safe crypto in PGP before Christmas!
The draft is in it's final review stages. It uses ML-KEM, ML-DSA and SLH-DSA.
You can take a look at the draft here: datatracker.ietf.org/doc/draft-ietf-openpgp-p...

#pgp #openpgp #quantum #encryption

Original post on social.freedom.press

We're simplifying how SecureDrop Workstation is installed!

Previously, users needed to manually download and verify an OpenPGP key; now we're eliminating that step without compromising on security.

Learn more in our blog post […]

Sequoia-PGP Sequoia is a modular OpenPGP implementation in Rust.

I have finally used https://sequoia-pgp.org/ for something real and am not likely to be going back to GnuPG ever again (except perhaps to export things).

sq is great. The Rust APIs and Python bindings are also great.
#python #rust #openpgp

RPM 6.0 firme multiple OpenPGP e nuove funzionalità per la sicurezza su Linux RPM 6.0 introduce il supporto per più firme OpenPGP per pacchetto, migliorando la sicurezza e la flessibilità nella distribuzione software su Linux.

RPM 6.0 è arrivato! Supporto per firme OpenPGP multiple, nuove API, miglioramenti alla sicurezza e compatibilità estesa. Una svolta per la distribuzione software su Linux. #Linux #RPM #OpenPGP #Sicurezza #Pacchetti

Sami Lehtinen - Public keys My Public Keys

I've updated my public keys. In future #minisign will be used to #sign important information, instead of #OpenPGP.
sami-lehtinen.net/public-keys
Sami Lehtinen minisign key: RWRzsYlYTs5IJRJqnEoFRpSbhJBaeym9zb2bs7hMbj9rOZrNYC+HYmrY

Original post on chaos.social

#Whatsapp on #iOS had a severe 0day that was exploited in the wild for some months, and is fixed with august 20th releases hackread.com/whatsapp-0-day-exploit-a...

Last year #signal also had its multi-device functionality exploited in the wild […]

Psi+ - Browse /Windows/Personal-Builds/KukuRuzo at SourceForge.net Psi+ Project — development branch of Psi XMPP client

#Psi+ 1.5.2109.0 (#Qt6) has been released ( #XMPP / #Jabber / #PsiPlus / #PsiIM / #PsiXMPP / #psidev / #OMEMO / #OTR / #OpenPGP / #PGP / #Qt ) sourceforge.net/projects/psi...

Finally did activate the NXP SE050 Secure Element in my Nitrokey 3 and generated new on-device keys, by using the amazing "oct" (openpgp-card-tools).

Almost entirely using the modern rust-based openpgp implementations now:

- oct for card management and […]

[Original post on burningboard.net]

Security & Privacy by Design - Passbolt Security Model Security is our top priority at passbolt. Learn about our security features and measures passbolt takes to keep your sensitive information safe.

The updated security whitepaper for Passbolt v5 is now available. It explains how passbolt protects your data, including a clear breakdown of security model based on the #OpenPGP encryption standard.

Read the full whitepaper here: www.passbolt.com/security

#Compliance #SOC2 #Whitepaper

🧵⬇️

Also updated my work OpenPGP/GPG keys to ECC.

I've had GPG keys since 1998.
One day, I will get an encrypted message...

One day...

#openpgp #gpg #gnupg #librepgp #encryption