Jetzt mal eine wirklich sehr nerdige #Frage.
Für diejenigen, die E-Mail-Verschlüsselung mit #GnuPG / #OpenPGP verwenden:
Lässt ihr die Betreffzeile offen oder wird die bei euch auch verschlüsselt?
This release is a port to the current version of the openpgp-card library (see https://fosstodon.org/@hko/111015349793980056), and also includes an update of the dependencies in Cargo.lock.
Apple has dropped support for macOS Mail plugins, such as GPG Mail, in macOS Sonoma. If you rely on our OpenPGP integration for your daily work, please refrain from upgrading to macOS Sonoma at this time. As a replacement Apple introduced "Mail Extensions". For GPG Mail however, some very important functionality is still missing from the Mail Extensions API which will not be available before the first update of #macOS#Sonoma.
After getting my laptop reinstalled, I needed to Migrate my GPG keys to a new machine. Only done this once and thought I should write it down for myself and others.
Standardized, interoperable #encryption is key for a better internet.
Proton and the @ietf OpenPGP Working Group are pleased to announce a crypto refresh of the #OpenPGP standard. Standardization today ensures interoperability tomorrow.
EN:
Unfortunately, I can't find a good entry point for this topic:
How do you implement server-side mail encryption and decryption for s/mime? I use Postfix+Cyrus.
DE:
Ich finde für das Thema leider keinen guten Einstieg:
Wie realisiert ihr serverseitige Mailver- und entschlüsselung für s/mime? Ich nutze Postfix+Cyrus.
@lued Das ist ja der Trick:
Das geht garnicht, jedenfalls nicht offiziell.
Es gibt ne Menge Appliances die quasi als Man-in-the-Middle agieren um dies umzusetzen aber IMHO ist das allenfalls Blenderei wenn nicht sogar digitales Schlangenöl.
Es ist einfacher allen Nutzer*innen beizubringen wie #GnuPG / #OpenPGP funktioniert als das zu realisieren...
all of the fedidrama with blocklists comes down to the idea that instances are needed for proxying traffic, but this is only true because identities are not decentralized, which is a fundamental mistake of the mastodon era of software
this is not really up to debate
without decentralized identity we will have this problem of someone else deciding what data we have access to, so if you don't like that, you have to push for it, the same way mastodon pushed for the democratization of this centralized model away from twitter, and even before mastodon others did so in a less accessible way
give power to the users by making it accessible, not by pretending that everyone can learn to use docker
"But Bitcoin is a great way to monetize excess renewables"
No, this was never true. If you make a capital investment in a mining rig, then you want that rig making you money 24hrs, not just when the rest of the grid is not consuming renewables.
Among many other improvements, I've added a mechanism for backend crates to adjust capabilities based on reader limitations. For example, this can be used to disable extended length APDUs, if the reader doesn't support them.
With this new mechanism, I saw stable support for #OpenPGP cards via a (cheap and easy to source) ACR122U #NFC reader, using card-backend-pcsc v0.5.0.
Hello community of #Thunderbird#OpenPGP users. I'd like to know if some of you are still stuck at Thunderbird version 68 and the old #Enigmail Add-on. Is there any missing functionality in Thunderbird 115 that is still preventing you from migrating? #PGP#GPG#GnuPG@thunderbird
This version introduces the new "Split" mode of operation.
Split mode allows (relatively) easy operation of CAs that perform certification operations in a separate (e.g. air-gapped) environment.
While exploring use of PKCS #11 devices in #OpenPGP contexts, I stumbled over a bug (and potential security issue) in the yubihsm_pkcs11.so driver for #YubiHSM devices.
Cryptography is a tool for turning a whole swathe of problems into key management problems. Key management problems are way harder than (virtually all) cryptographers think.
TIL the protocol everyone uses for #OpenPGP#keyservers appears to be documented only in an Internet Draft that expired about 20 years ago. Why did it never become an RFC if not an STD? Is it hiding in some hard-to-find RFC, or more-stably documented in some non-IETF place?
I miss the days of having multi-service messaging clients like Trillian that would connect to your AIM, MSN Messenger, etc. and have all your contacts from all those networks in one place. #Pidgin is still a thing, but it doesn't, as far as I can tell, support #OMEMO or #OpenPGP for their #XMPP implementation. I'd love to see something like Pidgin supporting Signal, add OMEMO/OpenPGP to their XMPP support, maybe support connecting to Facebook Messenger, etc. all in one application.
Die ersten Instanzen blockieren #Threads. Einer der Gründe, warum ich selbst was hoste. Ich möchte gerne selbst bestimmen, mit wem ich föderiere und mit wem nicht. Ja, da wird viel Unfug her kommen, aber eben auch ein paar schwer zu ersetzende Quellen. Diese in Sippenhaft zu nehmen ist IMO kontraproduktiv. Insbesondere bei einer "Instanz", die mehr Nutzer haben wird, als der Rest des Feediverse. Oder dann halt Feedibubble.
@adlerweb Ich bin inzwoschen so sehr von den ganzen #Spammern angepisst dass ich am liebsten nen #eMail-Provider starten möchte der jegliche unverschlüsselte eMails blockiert & ablehnt!