Think your email is private? 🤔 Let's dive into the reality of email security and why end-to-end encryption isn't always what it seems. Some surprising truths revealed! 💻 #EmailSecurity #Cybersecurity #PGP

https://www.youtube.com/watch?v=pa0bn0zr-Zg

Original post on burningboard.net

I did submit 3 new ports for inclusion in FreeBSD 🙂 :freebsd:

Let's see how this goes ..

openpgp-card-tools: bugs.freebsd.org/bugzilla/show_bug.cgi

openpgp-card-tools-git: bugs.freebsd.org/bugzilla/show_bug.cgi

openpgp-card-ssh-agent […]

The AlmaLinux Build System at a glance

From last week's Linux Update: Joe Casad explores the @almalinux.org Build System, which lets you build, test, sign, and release packages from a single interface
www.linux-magazine.com/Online/Featu...
#AlmaLinux #CentOs #RHEL #EnterpriseLinux #DevOps #Mock #Pulp #NGINX #Terraform #PGP #Git

The GNU Privacy Guard

2️⃣ Download verificati con #PGP

Molti software (incluso Tor) pubblicano una firma PGP (.asc) per verificare che il file non sia stato modificato o infettato. Controllarla è una pratica base di sicurezza.

..idem adottare voi stessi una firma PGP o usare un sistema criptato E2E.

🔗 gnupg.org

Want to hurt #BigTech where it stings? Encrypt your emails with #PGP.

Gmail and Outlook's entire business model relies on reading your mail. An encrypted blob? Worthless to them. No ads. No #AI training. Nothing.

One key to rule them all. #privacy #FOSS #opensource #encryption #DigitalRights

Original post on soc.octade.net

@cypherpunk@soc.octade.net @cryptography@soc.octade.net

**Al Gore Invented the Internet.**
**Joe Biden invented PGP encryption.**
**Cypherpunks write code.**

Joe Biden gifted humanity with PGP encryption (in a roundabout way). Phil Zimmermann created PGP in response to a anti-privacy bill […]

keyoxide.org/34011EC857ED789C033AF47E...

By the way, I added this account to my #Keyoxide verification profile.

I love the concept behind #PGP, even if the most deployed implementation, #GnuPG, has aged like milk.

#SequoiaPGP with a #OpenKeychain-like GUI would be nice 👀.

Cool how you can verify commits in Gitlab with SSH key or GPG key.

#ssh #git #pgp

Original post on aus.social

Happy to report that about a year after getting a mate to communicate using Signal instead of WhatsApp, we just today made the progression to securing our emails via pgp. 🥳

He was already using Thunderbird as his email client, and although just a few clicks it was a James Bond meets Bill Gates […]

Original post on procial.tchncs.de

E-Mails mit #PgP EndeZuEnde verschlüsseln?

Mit #Thunderbird geht das inzwischen ganz gut, auch wenn es noch Verbesserungsbedarf in der Nutzerführung gibt.

Aber:
Wenn ich bei mir die PgP-Verschlüsselung eingerichtet habe, können dann meine Mailpartner meine Mails lesen/ entschlüsseln, wenn sie […]

Looking at everything that's happening around git repositories, #ai slop imposing itself via PullRequests and then measures of "vouching for" people I kinda feel old and struck by #pgp web-of trust ^__^"

(any kid round here was at a signing party ever? ;) )

Meet the PGP Class of 2026: Kanuka Mareddy, Indian School of Business Meet the Indian School of Business PGP Class of 2026 through in-depth profiles on their experiences and aspirations

After earning her master's degree in civil engineering from Columbia University in New York, Kanuka Mareddy returned to her home town, Hyderabad in India, for her #PGP at the Indian School of Business poetsandquants.com/2026/01/20/m...
#Hyderabad #India #BusinessSchool #EduSky

I have a hunch that unencrypted email is not going to help us in the current situation. But there's only one person besides me in my professional network that still uses #PGP. So what should we do?

Threat model for PGP signed software vs. HTTPS - Frozen Lemmy A lot of software is distributed with PGP keys. These can theoretically be used to verify that the software was created by the person who owns the key. (Sorry if I get the PGP details wrong, I have no practical experience with it.) Software also comes over HTTPS. With Let’s Encrypt, the verification is tied to ownership of the domain (DNS records I think). So if you’re on ubuntu.com [http://ubuntu.com] with HTTPS, you’re getting files only approved by whoever owns the ubuntu.com [http://ubuntu.com] domain. HTTPS is super convenient. If you’re paranoid, or the entire chain is not HTTPS (HTTPS links to HTTP downloads), you can use a hash program. Hash programs are implemented on all major OSs. It’s visually inspectable. PGP on the other hand is such a mess that even some cryptographers don’t like it. What practical threats would be stopped by a PGP key that are not stopped by HTTPS? ✅ plan A - good guy owns software.org [http://software.org] - encrypts with let’s encrypt (only provided if they prove DNS ownership of software.org [http://software.org]) - https page serves software download ✅ plan B - good guy owns software.org [http://software.org] and has at some point signed a public key - serves page on software.org [http://software.org] with software verifiable with PGP key import ❌ plan C - bad guy owns software.org [http://software.org] - software is compromised, but you would never know - software is malware ❌ plan D - bad guy owns software.org [http://software.org] - did not compromise the public key (created years prior by the true owner) - they cannot distribute software that matches the public key - software is malware, served over valid https, and verifiable with malware hashes served by bad guy

Bonus: what is the threat model for #PGP signed software that HTTPS doesn't solve? #cybersecurity

https://lemmy.frozeninferno.xyz/post/60352426

YouTube Share your videos with friends, family, and the world

Is it time to wake up?

Using #PGP With #Proton

m.youtube.com/feed/history

nerds, cryptographers, linux users: it's your time to shine. what OS/software has the easiest workflow for verifying a #PGP sig file?

www.rockingpage.com/domains/head...

better-experience.blogspot.com/2026/01/the-...

#PGP #VORTOLISTO
multi-search-tag-explorer.aepiot.com/advanced-sea...
aepiot.ro

Kritik an GnuPG und seinem Umgang mit gemeldeten Lücken Die auf dem 39C3 demonstrierten Probleme in der PGP-Implementierung GnuPG riefen vielfältige Kritik an GnuPGs Umgang damit, aber auch an PGP insgesamt hervor.

Die auf dem 39C3 demonstrierten Probleme in der PGP-Implementierung GnuPG riefen vielfältige Kritik an GnuPGs Umgang damit, aber auch an PGP insgesamt hervor. #PGP

Sie möchten eine Mail PGP-verschlüsselt senden, aber der Empfänger der Nachricht nutzt die Methode nicht?

Mit dem mailbox Guard können Sie auch in so einem Fall PGP-verschlüsselte Mails versenden: mailbox.org/de/blog/pgp-...

#E2EE #EMailVerschlüsselung #PGP

Kleopatra Certificate manager and cryptography app

Another private #PGP ' #Session like' tool for self encryption w/ S/MIME & other email client/systems, is #Kleopatra.
This does make it possible to connect to a public server that can comply w/ some 3rd party Gov key access. noted
So not as private, not client to client only.
apps.kde.org/kleopatra/

MS Office untragbar
Kostenlose Alternativen für alle verfügbar
www.a-fsa.de/de/articles/...
#Windows #Microsoft #Office #Datenklau #Datenskandale #Anti-Ueberwachung #Selbstschutz #Internet #anonym #Verschluesselung #Tor #PGP #Tails #Keepassx #Truecrypt #Jitsi #virtuell #OpenSource #Privatsphäre

Everything You Need to Know About Email Encryption in 2026 If you think about emails as if they’re anything but the digital equivalent of a postcard–that is to say, they provide zero confidentiality–then someone lied to you and I’m sorry you had to find out from a furry blog that sometimes talks about applied cryptography. At the end of 2025, at the 39th Chaos Communications […]

Original post on mstdn.social

Either I'm schitzophrenic or the Dead Internet Theory has progressed from merely an occasionally noticeable phenomenon ("theory") to a default on the bigger social media platforms?

https://en.wikipedia.org/wiki/Dead_Internet_theory

Will we have to go full #PGP and have Real Person Certified™ […]

IRCC Update – Parents & Grandparents Program (PGP) 🇨🇦

🔹 From Jan 1, 2026, IRCC will not accept new PGP PR applications until further notice.

🔹 Parents & grandparents can still visit Canada via the Super Visa.

#IRCCUpdate #PGP #SuperVisa #FamilySponsorship

The GPG Crisis: Why the Internet's Most Trusted Encryption Tool Is Fundamentally Broken A Cascade of Critical Vulnerabilities The cybersecurity community was shaken recently by the release of gpg.fail, a comprehensive catalog of 14 serious vulnerabilities in GnuPG (GPG) and related cryptographic tools. These aren't minor implementation...

The GPG Crisis: Why the Internet's Most Trusted Encryption Tool Is Fundamentally Broken

#gpg #pgp #cybersecurity #cryptography #vulnerabilities #encryption #digital signatures

gpg.fail

Lots of vulnerabilities posted in #gpg

gpg.fail
https://gpg.fail/

#gpgfail #pgp #encryption #cybersecurity #vulnerability #cve

39C3: Diverse Lücken in GnuPG und anderen kryptografischen Werkzeugen Sicherheitsforscher haben diverse sicherheitsrelevante Fehler in GnuPG und ähnlichen Programmen gefunden. Viele der Lücken sind (noch) nicht behoben.

Sicherheitsforscher haben diverse sicherheitsrelevante Fehler in GnuPG und ähnlichen Programmen gefunden. Viele der Lücken sind (noch) nicht behoben. #PGP

Original post on tenforward.social

I'm going to be in #Florence and #Rome for a couple days, followed by #Zermatt for a few more. I've never actually signed anybody's #pgp #gpg keys, but hey! Perhaps this could be a chance to learn how to do that *and* add some trans-atlantic edges to that web of trust!

#Italy #Switzerland […]

Les pieds nickelés de la sécurité informatique du MinInt

Pourquoi les responsables de la #sécurité #informatique du #MinInt n'ont-ils pas généralisé l'emploi des solutions Open Source de #chiffrement de la messagerie à l'aide de #GPG / #PGP ?

www.dsfc.net/infra/securi...

So now we know why there was a suspicious hole in the #39c3 Fahrplan

GPG 0-Day(s) - Spicy

https://gpg.fail

17:15 CET
https://streaming.media.ccc.de/39c3/one